SecuritySpace - CVE-2020-1596

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-1596

Description:
A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel.

To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack.

The update addresses the vulnerability by correcting how TLS components use hash algorithms.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-1596
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1596
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1596

CVE ID:	CVE-2020-1596
Description:	A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel. To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack. The update addresses the vulnerability by correcting how TLS components use hash algorithms.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-1596 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1596 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1596