AZL-41410

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-41410.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-41410

Upstream

CVE-2013-6418

Published

2014-05-05T17:06:04Z

Modified

2026-04-21T04:29:16.602049Z

Summary

CVE-2013-6418 affecting package python-pywbem 1.6.2-1

Details

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

References

https://nvd.nist.gov/vuln/detail/CVE-2013-6418

Affected packages

Azure Linux:3 / python-pywbem

Package

Name: python-pywbem
Purl: pkg:rpm/azure-linux/python-pywbem

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.6.2-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-41410.json"