AZL-45129

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-45129.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-45129

Upstream

CVE-2013-6418

Published

2014-05-05T17:06:04Z

Modified

2026-04-21T04:31:37.700747Z

Summary

CVE-2013-6418 affecting package pywbem 0.17.6-12

Details

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

References

https://nvd.nist.gov/vuln/detail/CVE-2013-6418

Affected packages

Azure Linux:3 / pywbem

Package

Name: pywbem
Purl: pkg:rpm/azure-linux/pywbem

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

0.17.6-12

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-45129.json"