CVE-2018-8119

Published: May 9, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

Vendor	Product	Versions
Microsoft	C# SDK	affected `Azure IoT`
Microsoft	C SDK	affected `Azure IoT`
Microsoft	Java SDK	affected `Azure IoT`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8119

x_refsource_CONFIRM

104070

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-8119

Description

Affected Products

References