CVE-2024-8287

Vulnerability Description

Anbox Management Service, in versions 1.17.0 through 1.23.0, does not validate the TLS certificate provided to it by the Anbox Stream Agent. An attacker must be able to machine-in-the-middle the Anbox Stream Agent from within an internal network before they can attempt to take advantage of this.

Vulnerability Details

Published Date

September 18, 2024

Last Modified

September 24, 2024

Source

NVD

CVE-2024-8287

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment