CVE-2020-36658 – In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by d …

27 January 2023

Vuln ID: CVE-2020-36658

Published: 2023-01-27 05:15:12Z

Description: In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix.

Source: NVD.NIST.GOV

Date:

27 January 2023

Categorie(s):

NVD

Tag(s):

NVD

Australia’s spies and cops want ‘accountable encryption’ – aka access to backdoors25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka backdoors25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka backdooring encryption25 April 2024
Rubrik sets IPO price at $32 per share on $5.6B valuation ahead of NYSE debut25 April 2024
Governments issue alerts after ‘sophisticated’ state-backed actor found exploiting flaws in Cisco security boxes24 April 2024