Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.
References
Configurations
History
No history.
Information
Published : 2008-03-03 18:44
Updated : 2024-02-04 17:13
NVD link : CVE-2008-1114
Mitre link : CVE-2008-1114
CVE.ORG link : CVE-2008-1114
JSON object : View
Products Affected
vocera
- wireless_handset
CWE
CWE-20
Improper Input Validation