Headline
CVE-2022-34689
Windows CryptoAPI Spoofing Vulnerability.
Related news
Researchers Release PoC Exploit for Windows CryptoAPI Bug Discovered by NSA
Proof-of-concept (Poc) code has been released for a now-patched high-severity security flaw in the Windows CryptoAPI that the U.S. National Security Agency (NSA) and the U.K. National Cyber Security Centre (NCSC) reported to Microsoft last year. Tracked as CVE-2022-34689 (CVSS score: 7.5), the spoofing vulnerability was addressed by the tech giant as part of Patch Tuesday updates released in
Researchers Pioneer PoC Exploit for NSA-Reported Bug in Windows CryptoAPI
The security vulnerability allows attackers to spoof a target certificate and masquerade as any website, among other things.