QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-5408

Back to search

CVE-2018-5408

Published: May 8, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

The PrinterLogic Print Management software, versions up to and including 18.3.1.96, does not validate, or incorrectly validates, the PrinterLogic management portal's SSL certificate. When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. The software might connect to a malicious host while believing it is a trusted host, or the software might be deceived into accepting spoofed data that appears to originate from a trusted host.

VendorProductVersions

PrinterLogic

Management Software

affected
8.3.1.96 - <= 8.3.1.96

Weaknesses (CWE)

CWE-295

References

VU#
third-party-advisory
x_refsource_CERT-VN
108285
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now