Security Advisory

CVE-2020-5684

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-24 01:20:20

Last updated 2024-08-04 08:39:25

Assigner jpcert

State PUBLISHED

Description

iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express does not verify a server certificate properly, which allows a man-in-the-middle attacker to eavesdrop on an encrypted communication or alter the communication via a crafted certificate.

← Browse all CVEs View on cve.org ↗