Security Advisory

CVE-2024-5445

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-08 22:04:11

Last updated 2025-01-07 19:48:40

Assigner N-able

State PUBLISHED

Description

Ecosystem Agent version 4 < 4.1.5.2597 and Ecosystem Agent version 5 < 5.1.4.2473 did not properly validate SSL/TLS certificates, which could allow a malicious actor to perform a Man-in-the-Middle and intercept traffic between the agent and N-able servers from a privileged network position.

← Browse all CVEs View on cve.org ↗