CVE Vulnerabilities

CVE-2024-20080

Improper Certificate Validation

Published: Jul 01, 2024 | Modified: Jul 01, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08720039; Issue ID: MSV-1424.

Weakness

The product does not validate, or incorrectly validates, a certificate.

Potential Mitigations

References