In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched in 1.5.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2020-05-07T20:15:12
Updated: 2024-08-04T11:21:14.437Z
Reserved: 2020-03-30T00:00:00
Link: CVE-2020-11050
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-05-07T21:15:11.420
Modified: 2024-11-21T04:56:40.927
Link: CVE-2020-11050
Redhat