VYPR
High severity8.1NVD Advisory· Published Aug 1, 2016· Updated Jun 17, 2026

CVE-2016-5672

CVE-2016-5672

Description

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which makes it easier for man-in-the-middle attackers to spoof SSL servers and obtain sensitive information via a crafted certificate.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Range: <22.51.549.0
  • Intel/Crosswalk2 versions
    cpe:2.3:a:intel:crosswalk:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:intel:crosswalk:*:*:*:*:*:*:*:*range: <=19.49.514.4
    • (no CPE)range: <19.49.514.5, <20.50.533.11, <21.51.546.0, <22.51.549.0

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.