CVE-2017-18227
HIGHTitanHQ WebTitan Gateway - Improper Certificate Validation in TLS Interception
Title source: llmDescription
TitanHQ WebTitan Gateway has incorrect certificate validation for the TLS interception feature.
References (3)
Core 3
Core References
Technical Description x_refsource_misc
https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/
Technical Description x_refsource_misc
http://dx.doi.org/10.14722/ndss.2017.23456
Technical Description x_refsource_misc
https://jhalderm.com/pub/papers/interception-ndss17.pdf
Scores
CVSS v3
7.5
EPSS
0.0071
EPSS Percentile
48.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-295
Status
published
Products (1)
titanhq/webtitan_gateway
Published
Mar 12, 2018
Tracked Since
Feb 18, 2026