CVE-2018-1000096

Description

brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks.

References

https://github.com/brianleroux/tiny-json-http/pull/15

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS