Low severity3.8NVD Advisory· Published Aug 12, 2024· Updated Apr 15, 2026
CVE-2024-5445
CVE-2024-5445
Description
Ecosystem Agent version 4 < 4.1.5.2597 and Ecosystem Agent version 5 < 5.1.4.2473 did not properly validate SSL/TLS certificates, which could allow a malicious actor to perform a Man-in-the-Middle and intercept traffic between the agent and N-able servers from a privileged network position.
Affected products
1- Range: 4 >= 4.0 < 4.1.5.2597; 5 >= 5.0 < 5.1.4.2473
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.