Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network. NOTE: this issue exists because of an incomplete fix for CVE-2013-0240.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNOME Online Accounts 加密问题漏洞
Vulnerability Description
GNOME Online Accounts是GNOME的GNOME的单点登录框架,为用户提供一种方式来设置仅供核心系统和核心应用程序使用的在线帐户。 GNOME Online Accounts 3.6.3之前的3.6.x版本和3.7.91之前的3.7.x版本存在加密问题漏洞,该漏洞源于为使用libsoup库的供应商创建账户时,程序没有正确验证SSL证书。通过嗅探网络,中间人攻击者利用该漏洞获得敏感信息如证书。
CVSS Information
N/A
Vulnerability Type
N/A