CVE-2025-12889 – TLS 1.2 Client Can Downgrade Digest Used

CVE ID : CVE-2025-12889

Published : Nov. 22, 2025, 12:15 a.m. | 1 hour, 1 minute ago

Description : With TLS 1.2 connections a client can use any digest, specifically a weaker digest that is supported, rather than those in the CertificateRequest.

Severity: 2.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13873 – The feature to import a survey is prone to stored Cross-Site Script attacks

CVE-2025-13872 – Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio

CVE-2025-13871 – The feature to manage resources is prone to Cross-Site Request Forgery attacks

CVE-2025-13870 – Unauthorized access and subscription vulnerability in Boards