Critical severity9.1NVD Advisory· Published Mar 13, 2020· Updated Jun 17, 2026
CVE-2020-1887
CVE-2020-1887
Description
Incorrect validation of the TLS SNI hostname in osquery versions after 2.9.0 and before 4.2.0 could allow an attacker to MITM osquery traffic in the absence of a configured root chain of trust.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Facebook/Osqueryv5Range: 4.2.0
Patches
Vulnerability mechanics
References
2- github.com/osquery/osquery/pull/6197nvdPatchThird Party Advisory
- www.facebook.com/security/advisories/cve-2020-1887nvdThird Party Advisory
News mentions
0No linked articles in our index yet.