Loading
Generated remediation guidance and an executive summary. No account required.
Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signature algorithms and (2) ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors.
Use CWE-20, Fedoraproject vendor hub and Fedora product page to widen CVE-2016-2850 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-35093, CVE-2024-6293 and CVE-2024-6292 for nearby disclosures in the same product family.