Vulnerability Disclosure

1 Result / Page 1 of 1


todayDecember 18, 2019

  • 3340
  • 2

Vulnerability Disclosure Infosec Team

Global Payments Vulnerability

CVE-2019-20455 On 2019-03-28, Global Payments issued a commit to their SDK that introduced a vulnerability allowing man-in-the-middle attacks due to SSL integrity checking being explicitly disabled. The result of this change allowed all communications between merchants and GlobalPay to be intercepted and unencrypted. Any Merchant using a version of the ...