VYPR
Unrated severityNVD Advisory· Published May 15, 2020· Updated Aug 4, 2024

CVE-2020-12872

CVE-2020-12872

Description

yaws_config.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Yaws/Yawsdescription
  • Yaws/Yawsllm-fuzzy
    Range: <=2.0.2 or <=2.0.7

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.