CVE-2020-1596
EUVD-2020-1246711.09.2020, 17:15
<p>A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel.</p> <p>To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack.</p> <p>The update addresses the vulnerability by correcting how TLS components use hash algorithms.</p>Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_10 | - |
| microsoft | windows_10 | - |
| microsoft | windows_7 | - |
| microsoft | windows_7 | - |
| microsoft | windows_8.1 | - |
| microsoft | windows_8.1 | - |
| microsoft | windows_rt_8.1 | - |
| microsoft | windows_server_2008 | - |
| microsoft | windows_server_2008 | - |
| microsoft | windows_server_2012 | - |
| microsoft | windows_server_2016 | - |
| microsoft | windows_server_2019 | - |
𝑥
= Vulnerable software versions
Windows Releases
Platform | Version | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Windows 10 |
| ||||||||||||||||
| Windows 7 |
| ||||||||||||||||
| Windows 8.1 |
| ||||||||||||||||
| Windows RT 8.1 |
| ||||||||||||||||
| Windows Server |
| ||||||||||||||||
| Windows Server 2008 |
| ||||||||||||||||
| Windows Server 2008 R2 |
| ||||||||||||||||
| Windows Server 2012 |
| ||||||||||||||||
| Windows Server 2012 R2 |
| ||||||||||||||||
| Windows Server 2016 |
| ||||||||||||||||
| Windows Server 2019 |
|
Common Weakness Enumeration