windows phone 7 firmware (microsoft) — Vulnerabilities

Signals

Monitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real timeMonitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real time

Vendors · microsoft · windows phone 7 firmware

windows phone 7 firmware

· 1 CVEsmicrosoft · 1 known vulnerabilities

Total

Critical

High

Medium

CISA KEV

CVE-2012-2993MEDIUM 5.9

Sep 18, 2012

Microsoft Windows Phone 7 does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL server for the (1) POP3, (2) IMAP, or (3) SMTP protocol via an arbitrary valid certificate.

All microsoft products All Vendors CVE Database KEV Catalog