CyberRota
← Ana sayfaya dön

CVE-2026-12490

HIGH · CVSS 7.5 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-25T07:16:45.330 · Çekilme zamanı: 2026-06-30T18:33:19.494561+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-12490
Severity
HIGH
CVSS
7.5
EPSS
%0.14

Orijinal NVD Açıklaması

When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client certificate is needed when the request comes in over TLS over the regular tls-port (and not the tls-auth-port) or over over TCP over the regular port, when the other conditions of the provide-xfr rule match.