Sploit.io - Search

Product: C# SDK, version: Azure IoT

CVE-2018-8119

Severity: Unknown

Description: A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

CVSS Score: N/A

Affected Products:

Microsoft C# SDK - Versions: Azure IoT
Microsoft C SDK - Versions: Azure IoT
Microsoft Java SDK - Versions: Azure IoT

References:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8119
http://www.securityfocus.com/bid/104070