Insecure SSL Certificate Verification and Access Pattern Vulnerability in Cordaware Bestinformed Microsoft Windows Client

Insecure SSL Certificate Verification and Access Pattern Vulnerability in Cordaware Bestinformed Microsoft Windows Client

CVE-2019-6266 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cordaware bestinformed Microsoft Windows client before 6.2.1.0 is affected by insecure SSL certificate verification and insecure access patterns. These issues allow remote attackers to downgrade encrypted connections to cleartext.

Learn more about our Web Application Penetration Testing UK.