Unrated severityNVD Advisory· Published Dec 24, 2020· Updated Aug 4, 2024
CVE-2020-5684
CVE-2020-5684
Description
iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express does not verify a server certificate properly, which allows a man-in-the-middle attacker to eavesdrop on an encrypted communication or alter the communication via a crafted certificate.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- NEC Corporation/Management software for NEC Storage disk array systemv5Range: iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express
Patches
Vulnerability mechanics
References
2- jpn.nec.com/security-info/secinfo/nv20-015.htmlmitrex_refsource_MISC
- jvn.jp/en/jp/JVN10100024/index.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.