CVE-2019-1318

Medium

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft…

microsoft·CWE-290·Published 2019-10-10

CVSS

5.9

EPSS

0.03

KEV

Exploits

cve.orgen

193 chars

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

NVDen

193 chars

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

Hay una vulnerabilidad de suplantación de identidad cuando Transport Layer Security (TLS) accede a sesiones de non- Extended Master Secret (EMS), también se conoce como "Microsoft Windows Transport Layer Security Spoofing Vulnerability".

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N