CVE-2020-1887 is a vulnerability in Linux Foundation Osquery
Published on March 13, 2020
Incorrect validation of the TLS SNI hostname in osquery versions after 2.9.0 and before 4.2.0 could allow an attacker to MITM osquery traffic in the absence of a configured root chain of trust.
Weakness Type
Improper Validation of Certificate with Host Mismatch
The software communicates with a host that provides a certificate, but the software does not properly ensure that the certificate is actually associated with that host.
Products Associated with CVE-2020-1887
Want to know whenever a new CVE is published for Linux Foundation Osquery? stack.watch will email you.
Affected Versions
Facebook Osquery:- Version 4.2.0 is affected.
- Version next of 2.9.0 and below unspecified is affected.
- Version 2.9.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.