CVE-2020-16093

Published: Jul 17, 2022

Modified: Aug 4, 2024

PUBLISHED

Description

In LemonLDAP::NG (aka lemonldap-ng) through 2.0.8, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://lemonldap-ng.org/download

https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/2250

[debian-lts-announce] 20230128 [SECURITY] [DLA 3287-1] lemonldap-ng security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-16093

Description

Affected Products

References