CVE-2020-5865

Summary

In versions prior to 3.3.0, the NGINX Controller is configured to communicate with its Postgres database server over unencrypted channels, making the communicated data vulnerable to interception via man-in-the-middle (MiTM) attacks.

Affected Software

VendorProductVersion RangeStatus
n/aNGINX Controller< 3.3.0affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

References