Security News > 2017 > March > Symantec API Flaws reportedly let attackers steal Private SSL Keys and Certificates (The Hackers News)

Symantec API Flaws reportedly let attackers steal Private SSL Keys and Certificates (The Hackers News)
2017-03-28 09:54

A security researcher has disclosed critical issues in the processes and third-party API used by Symantec certificate resellers to deliver and manage Symantec SSL certificates. The flaw, discovered by Chris Byrne, an information security consultant and instructor for Cloud Harmonics, could allow an unauthenticated attacker to retrieve other persons' SSL certificates, including public and


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/RSUkD7bAems/symantec-ssl-certificates.html

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Symantec 79 10 69 77 11 167