Lucene search
F5F5:K000140042HistoryJun 18, 2024 - 12:00 a.m.
K000140042: libldap vulnerability CVE-2020-15719
2024-06-1800:00:00
my.f5.com
1
libldap
certificate validation
openldap-2.4.46-10.el8
cve-2020-15719
rfc6125 support
red hat enterprise linux
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
4.2 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
6.4 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.4%
Security Advisory Description
libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName (SAN). This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux. (CVE-2020-15719)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Affected configurations
Node
f5big-ip_nextMatch20.1.0
ORf5big-ip_nextMatch20.1.1
ORf5big-ip_nextMatch20.2.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_nextMatch1.1.0
ORf5big-ip_nextMatch1.1.1
ORf5big-ip_nextMatch1.2.0
ORf5big-ip_nextMatch1.2.1
ORf5big-ip_nextMatch1.3.0
ORf5big-ip_ltmMatch20.1.0
ORf5big-ip_ltmMatch20.2.0
ORf5big-ip_nextMatch1.5.0
ORf5big-ip_nextMatch1.6.0
ORf5big-ip_nextMatch1.7.0
ORf5big-ip_nextMatch1.7.1
ORf5big-ip_nextMatch1.7.2
ORf5big-ip_nextMatch1.7.3
ORf5big-ip_nextMatch1.7.4
ORf5big-ip_nextMatch1.7.5
ORf5big-ip_nextMatch1.7.6
ORf5big-ip_nextMatch1.7.7
ORf5big-ip_nextMatch1.7.8
ORf5big-ip_nextMatch1.8.0
ORf5big-ip_nextMatch1.8.2
ORf5big-ip_nextMatch1.9.0
ORf5big-ip_nextMatch1.9.1
ORf5big-ip_nextMatch1.9.2
ORf5big-ip_nextMatch20.1.0
ORf5big-ip_nextMatch20.2.0
ORf5big-ipMatch15.1.0
ORf5big-ipMatch15.1.1
ORf5big-ipMatch15.1.10
ORf5big-ipMatch15.1.2
ORf5big-ipMatch15.1.3
ORf5big-ipMatch15.1.4
ORf5big-ipMatch15.1.5
ORf5big-ipMatch15.1.6
ORf5big-ipMatch15.1.7
ORf5big-ipMatch15.1.8
ORf5big-ipMatch15.1.9
ORf5big-ip_afmMatch15.1.0
ORf5big-ip_afmMatch15.1.1
ORf5big-ip_afmMatch15.1.10
ORf5big-ip_afmMatch15.1.2
ORf5big-ip_afmMatch15.1.3
ORf5big-ip_afmMatch15.1.4
ORf5big-ip_afmMatch15.1.5
ORf5big-ip_afmMatch15.1.6
ORf5big-ip_afmMatch15.1.7
ORf5big-ip_afmMatch15.1.8
ORf5big-ip_afmMatch15.1.9
ORf5big-ip_afmMatch16.1.0
ORf5big-ip_afmMatch16.1.1
ORf5big-ip_afmMatch16.1.2
ORf5big-ip_afmMatch16.1.3
ORf5big-ip_afmMatch16.1.4
ORf5big-ip_afmMatch17.1.0
ORf5big-ip_afmMatch17.1.1
ORf5big-ip_analyticsMatch15.1.0
ORf5big-ip_analyticsMatch15.1.1
ORf5big-ip_analyticsMatch15.1.10
ORf5big-ip_analyticsMatch15.1.2
ORf5big-ip_analyticsMatch15.1.3
ORf5big-ip_analyticsMatch15.1.4
ORf5big-ip_analyticsMatch15.1.5
ORf5big-ip_analyticsMatch15.1.6
ORf5big-ip_analyticsMatch15.1.7
ORf5big-ip_analyticsMatch15.1.8
ORf5big-ip_analyticsMatch15.1.9
ORf5big-ip_analyticsMatch16.1.0
ORf5big-ip_analyticsMatch16.1.1
ORf5big-ip_analyticsMatch16.1.2
ORf5big-ip_analyticsMatch16.1.3
ORf5big-ip_analyticsMatch16.1.4
ORf5big-ip_analyticsMatch17.1.0
ORf5big-ip_analyticsMatch17.1.1
ORf5big-ip_apmMatch15.1.0
ORf5big-ip_apmMatch15.1.1
ORf5big-ip_apmMatch15.1.10
ORf5big-ip_apmMatch15.1.2
ORf5big-ip_apmMatch15.1.3
ORf5big-ip_apmMatch15.1.4
ORf5big-ip_apmMatch15.1.5
ORf5big-ip_apmMatch15.1.6
ORf5big-ip_apmMatch15.1.7
ORf5big-ip_apmMatch15.1.8
ORf5big-ip_apmMatch15.1.9
ORf5big-ip_apmMatch16.1.0
ORf5big-ip_apmMatch16.1.1
ORf5big-ip_apmMatch16.1.2
ORf5big-ip_apmMatch16.1.3
ORf5big-ip_apmMatch16.1.4
ORf5big-ip_apmMatch17.1.0
ORf5big-ip_apmMatch17.1.1
ORf5big-ip_asmMatch15.1.0
ORf5big-ip_asmMatch15.1.1
ORf5big-ip_asmMatch15.1.10
ORf5big-ip_asmMatch15.1.2
ORf5big-ip_asmMatch15.1.3
ORf5big-ip_asmMatch15.1.4
ORf5big-ip_asmMatch15.1.5
ORf5big-ip_asmMatch15.1.6
ORf5big-ip_asmMatch15.1.7
ORf5big-ip_asmMatch15.1.8
ORf5big-ip_asmMatch15.1.9
ORf5big-ip_asmMatch16.1.0
ORf5big-ip_asmMatch16.1.1
ORf5big-ip_asmMatch16.1.2
ORf5big-ip_asmMatch16.1.3
ORf5big-ip_asmMatch16.1.4
ORf5big-ip_asmMatch17.1.0
ORf5big-ip_asmMatch17.1.1
ORf5big-ip_dnsMatch15.1.0
ORf5big-ip_dnsMatch15.1.1
ORf5big-ip_dnsMatch15.1.10
ORf5big-ip_dnsMatch15.1.2
ORf5big-ip_dnsMatch15.1.3
ORf5big-ip_dnsMatch15.1.4
ORf5big-ip_dnsMatch15.1.5
ORf5big-ip_dnsMatch15.1.6
ORf5big-ip_dnsMatch15.1.7
ORf5big-ip_dnsMatch15.1.8
ORf5big-ip_dnsMatch15.1.9
ORf5big-ip_dnsMatch16.1.0
ORf5big-ip_dnsMatch16.1.1
ORf5big-ip_dnsMatch16.1.2
ORf5big-ip_dnsMatch16.1.3
ORf5big-ip_dnsMatch16.1.4
ORf5big-ip_dnsMatch17.1.0
ORf5big-ip_dnsMatch17.1.1
ORf5big-ipMatch15.1.0
ORf5big-ipMatch15.1.1
ORf5big-ipMatch15.1.10
ORf5big-ipMatch15.1.2
ORf5big-ipMatch15.1.3
ORf5big-ipMatch15.1.4
ORf5big-ipMatch15.1.5
ORf5big-ipMatch15.1.6
ORf5big-ipMatch15.1.7
ORf5big-ipMatch15.1.8
ORf5big-ipMatch15.1.9
ORf5big-ipMatch16.1.0
ORf5big-ipMatch16.1.1
ORf5big-ipMatch16.1.2
ORf5big-ipMatch16.1.3
ORf5big-ipMatch16.1.4
ORf5big-ipMatch17.1.0
ORf5big-ipMatch17.1.1
ORf5big-ip_link_controllerMatch15.1.10
ORf5big-ip_link_controllerMatch15.1.7
ORf5big-ip_link_controllerMatch15.1.8
ORf5big-ip_link_controllerMatch15.1.9
ORf5big-ip_link_controllerMatch16.1.0
ORf5big-ip_link_controllerMatch16.1.1
ORf5big-ip_link_controllerMatch16.1.2
ORf5big-ip_link_controllerMatch16.1.3
ORf5big-ip_link_controllerMatch16.1.4
ORf5big-ip_link_controllerMatch17.1.0
ORf5big-ip_link_controllerMatch17.1.1
ORf5big-ip_ltmMatch15.1.0
ORf5big-ip_ltmMatch15.1.1
ORf5big-ip_ltmMatch15.1.10
ORf5big-ip_ltmMatch15.1.2
ORf5big-ip_ltmMatch15.1.3
ORf5big-ip_ltmMatch15.1.4
ORf5big-ip_ltmMatch15.1.5
ORf5big-ip_ltmMatch15.1.6
ORf5big-ip_ltmMatch15.1.7
ORf5big-ip_ltmMatch15.1.8
ORf5big-ip_ltmMatch15.1.9
ORf5big-ip_ltmMatch16.1.0
ORf5big-ip_ltmMatch16.1.1
ORf5big-ip_ltmMatch16.1.2
ORf5big-ip_ltmMatch16.1.3
ORf5big-ip_ltmMatch16.1.4
ORf5big-ip_ltmMatch17.1.0
ORf5big-ip_ltmMatch17.1.1
ORf5big-ip_pemMatch15.1.0
ORf5big-ip_pemMatch15.1.1
ORf5big-ip_pemMatch15.1.10
ORf5big-ip_pemMatch15.1.2
ORf5big-ip_pemMatch15.1.3
ORf5big-ip_pemMatch15.1.4
ORf5big-ip_pemMatch15.1.5
ORf5big-ip_pemMatch15.1.6
ORf5big-ip_pemMatch15.1.7
ORf5big-ip_pemMatch15.1.8
ORf5big-ip_pemMatch15.1.9
ORf5big-ip_pemMatch16.1.0
ORf5big-ip_pemMatch16.1.1
ORf5big-ip_pemMatch16.1.2
ORf5big-ip_pemMatch16.1.3
ORf5big-ip_pemMatch16.1.4
ORf5big-ip_pemMatch17.1.0
ORf5big-ip_pemMatch17.1.1
ORf5nginx_agentMatch2.17.0
ORf5nginx_agentMatch2.18.0
ORf5nginx_agentMatch2.19.0
ORf5nginx_agentMatch2.20.0
ORf5nginx_agentMatch2.20.1
ORf5nginx_agentMatch2.22.0
ORf5nginx_agentMatch2.22.1
ORf5nginx_agentMatch2.23.0
ORf5nginx_agentMatch2.23.1
ORf5nginx_agentMatch2.23.2
ORf5nginx_agentMatch2.23.3
ORf5nginx_agentMatch2.24.0
ORf5nginx_agentMatch2.24.1
ORf5nginx_agentMatch2.25.0
ORf5nginx_agentMatch2.25.1
ORf5nginx_agentMatch2.26.0
ORf5nginx_agentMatch2.26.1
ORf5nginx_agentMatch2.26.2
ORf5nginx_agentMatch2.27.0
ORf5nginx_agentMatch2.28.0
ORf5nginx_agentMatch2.28.1
ORf5nginx_agentMatch2.29.0
ORf5nginx_agentMatch2.30.0
ORf5nginx_agentMatch2.30.1
ORf5nginx_agentMatch2.30.2
ORf5nginx_agentMatch2.30.3
ORf5nginx_agentMatch2.31.0
ORf5nginx_agentMatch2.31.1
ORf5nginx_agentMatch2.31.2
ORf5nginx_agentMatch2.32.0
ORf5nginx_agentMatch2.32.1
ORf5nginx_agentMatch2.32.2
ORf5nginx_agentMatch2.33.0
ORf5nginx_agentMatch2.34.0
ORf5nginx_agentMatch2.34.1
ORf5nginx_agentMatch2.35.0
ORf5nginx_api_connectivity_managerMatch1.0.0
ORf5nginx_api_connectivity_managerMatch1.1.0
ORf5nginx_api_connectivity_managerMatch1.1.1
ORf5nginx_api_connectivity_managerMatch1.2.0
ORf5nginx_api_connectivity_managerMatch1.3.0
ORf5nginx_api_connectivity_managerMatch1.3.1
ORf5nginx_api_connectivity_managerMatch1.4.0
ORf5nginx_api_connectivity_managerMatch1.4.1
ORf5nginx_api_connectivity_managerMatch1.5.0
ORf5nginx_api_connectivity_managerMatch1.6.0
ORf5nginx_api_connectivity_managerMatch1.7.0
ORf5nginx_api_connectivity_managerMatch1.8.0
ORf5nginx_api_connectivity_managerMatch1.9.0
ORf5nginx_api_connectivity_managerMatch1.9.1
ORf5nginx_api_connectivity_managerMatch1.9.2
ORf5nginx_app_protectMatch2.4.0
ORf5nginx_app_protectMatch3.0.0
ORf5nginx_app_protectMatch3.1.0
ORf5nginx_app_protectMatch4.0.1
ORf5nginx_app_protectMatch4.1.0
ORf5nginx_app_protectMatch4.2.0
ORf5nginx_app_protectMatch4.3.0
ORf5nginx_app_protectMatch4.4.0
ORf5nginx_app_protectMatch3.11.0
ORf5nginx_app_protectMatch3.12.1
ORf5nginx_app_protectMatch3.12.2
ORf5nginx_app_protectMatch4.0.0
ORf5nginx_app_protectMatch4.1.0
ORf5nginx_app_protectMatch4.10.0
ORf5nginx_app_protectMatch4.2.0
ORf5nginx_app_protectMatch4.3.0
ORf5nginx_app_protectMatch4.4.0
ORf5nginx_app_protectMatch4.5.0
ORf5nginx_app_protectMatch4.6.0
ORf5nginx_app_protectMatch4.7.0
ORf5nginx_app_protectMatch4.8.0
ORf5nginx_app_protectMatch4.8.1
ORf5nginx_app_protectMatch4.9.0
ORf5nginx_app_protectMatch5.0.0
ORf5nginx_app_protectMatch5.1.0
ORf5nginx_app_protectMatch5.2.0
ORf5nginx_controllerMatch3.18.3
ORf5nginx_controllerMatch3.19.1-apim
ORf5nginx_controllerMatch3.19.2-apim
ORf5nginx_controllerMatch3.19.3-apim
ORf5nginx_controllerMatch3.19.4-apim
ORf5nginx_controllerMatch3.19.5-apim
ORf5nginx_controllerMatch3.19.6-apim
ORf5nginx_controllerMatch3.20.0
ORf5nginx_controllerMatch3.20.1
ORf5nginx_controllerMatch3.21.0
ORf5nginx_controllerMatch3.22.0
ORf5nginx_controllerMatch3.22.1
ORf5nginx_controllerMatch3.22.2
ORf5nginx_controllerMatch3.22.3
ORf5nginx_controllerMatch3.22.4
ORf5nginx_controllerMatch3.22.5
ORf5nginx_controllerMatch3.22.6
ORf5nginx_controllerMatch3.22.7
ORf5nginx_controllerMatch3.22.8
ORf5nginx_controllerMatch3.22.9
ORf5nginx_ingress_controllerMatch1.12.5
ORf5nginx_ingress_controllerMatch2.2.1
ORf5nginx_ingress_controllerMatch2.2.2
ORf5nginx_ingress_controllerMatch2.3.0
ORf5nginx_ingress_controllerMatch2.4.0
ORf5nginx_ingress_controllerMatch2.4.1
ORf5nginx_ingress_controllerMatch2.4.2
ORf5nginx_ingress_controllerMatch3.0.0
ORf5nginx_ingress_controllerMatch3.0.1
ORf5nginx_ingress_controllerMatch3.0.2
ORf5nginx_ingress_controllerMatch3.1.0
ORf5nginx_ingress_controllerMatch3.1.1
ORf5nginx_ingress_controllerMatch3.2.0
ORf5nginx_ingress_controllerMatch3.2.1
ORf5nginx_ingress_controllerMatch3.3.0
ORf5nginx_ingress_controllerMatch3.3.1
ORf5nginx_ingress_controllerMatch3.4.0
ORf5nginx_ingress_controllerMatch3.4.1
ORf5nginx_ingress_controllerMatch3.4.2
ORf5nginx_ingress_controllerMatch3.5.0
ORf5nginx_ingress_controllerMatch3.5.1
ORf5nginx_ingress_controllerMatch3.5.2
ORf5nginx_instance_managerMatch2.10.0
ORf5nginx_instance_managerMatch2.10.1
ORf5nginx_instance_managerMatch2.11.0
ORf5nginx_instance_managerMatch2.12.0
ORf5nginx_instance_managerMatch2.13.0
ORf5nginx_instance_managerMatch2.13.1
ORf5nginx_instance_managerMatch2.14.0
ORf5nginx_instance_managerMatch2.14.1
ORf5nginx_instance_managerMatch2.15.0
ORf5nginx_instance_managerMatch2.15.1
ORf5nginx_instance_managerMatch2.16.0
ORf5nginx_instance_managerMatch2.2.0
ORf5nginx_instance_managerMatch2.3.0
ORf5nginx_instance_managerMatch2.3.1
ORf5nginx_instance_managerMatch2.4.0
ORf5nginx_instance_managerMatch2.5.0
ORf5nginx_instance_managerMatch2.5.1
ORf5nginx_instance_managerMatch2.6.0
ORf5nginx_instance_managerMatch2.7.0
ORf5nginx_instance_managerMatch2.8.0
ORf5nginx_instance_managerMatch2.9.0
ORf5nginx_instance_managerMatch2.9.1
ORf5nginx_security_monitoringMatch1.0.0
ORf5nginx_security_monitoringMatch1.1.0
ORf5nginx_security_monitoringMatch1.2.0
ORf5nginx_security_monitoringMatch1.3.0
ORf5nginx_security_monitoringMatch1.4.0
ORf5nginx_security_monitoringMatch1.5.0
ORf5nginx_security_monitoringMatch1.6.0
ORf5nginx_security_monitoringMatch1.7.0
ORf5nginx_security_monitoringMatch1.7.1
ORf5nginxMatchr27plus
ORf5nginxMatchr28plus
ORf5nginxMatchr29plus
ORf5nginxMatchr30plus
ORf5nginxMatchr31plus
ORf5nginxMatchr32plus
ORf5nginx_service_meshMatch1.1.0
ORf5nginx_service_meshMatch1.2.0
ORf5nginx_service_meshMatch1.2.1
ORf5nginx_service_meshMatch1.3.0
ORf5nginx_service_meshMatch1.3.1
ORf5nginx_service_meshMatch1.4.0
ORf5nginx_service_meshMatch1.4.1
ORf5nginx_service_meshMatch1.5.0
ORf5nginx_service_meshMatch1.6.0
ORf5nginx_service_meshMatch1.7.0
ORf5nginx_service_meshMatch2.0.0
ORf5nginxMatch1.27.0
ORf5nginxMatch1.28.0
ORf5nginxMatch1.29.0
ORf5nginxMatch1.30.0
ORf5nginxMatch1.31.0
ORf5nginxMatch1.31.1
ORf5nginxMatch1.32.0
ORf5nginxMatch1.32.1
ORf5f5os-aMatch1.5.1
ORf5f5os-aMatch1.5.2
ORf5f5os-aMatch1.7.0
ORf5f5os-cMatch1.6.0
ORf5f5os-cMatch1.6.1
ORf5f5os-cMatch1.6.2
ORf5big-iq_centralized_managementMatch8.1.0
ORf5big-iq_centralized_managementMatch8.2.0
ORf5big-iq_centralized_managementMatch8.3.0
ORf5big-ip_ddos_hybrid_defenderMatch15.1.0
ORf5big-ip_ddos_hybrid_defenderMatch15.1.1
ORf5big-ip_ddos_hybrid_defenderMatch16.1.0
ORf5big-ip_ddos_hybrid_defenderMatch17.1.0
ORf5ssl_orchestratorMatch15.1.0
ORf5ssl_orchestratorMatch15.1.1
ORf5ssl_orchestratorMatch15.1.9
ORf5ssl_orchestratorMatch16.1.0
ORf5ssl_orchestratorMatch16.1.1
ORf5ssl_orchestratorMatch16.1.3
ORf5ssl_orchestratorMatch16.1.4
ORf5ssl_orchestratorMatch17.1.0
ORf5ssl_orchestratorMatch17.1.1
ORf5traffix_signaling_delivery_controllerMatch5.1.0
ORf5traffix_signaling_delivery_controllerMatch5.2.0
Related
redhatcve
redhatcve
CVE-2020-15719
2020-07-15 15:37:57
openvas
openvas
openSUSE: Security Advisory for openldap2 (openSUSE-SU-2020:1459-1)
2020-09-20 00:00:00
Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-1872)
2020-08-31 00:00:00
openSUSE: Security Advisory for openldap2 (openSUSE-SU-2020:1416-1)
2020-09-13 00:00:00
cvelist
cvelist
CVE-2020-15719
2020-07-14 13:47:31
nvd
nvd
CVE-2020-15719
2020-07-14 14:15:17
prion
prion
Design/Logic Flaw
2020-07-14 14:15:00
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.6.0 : openldap (EulerOS-SA-2020-2023)
2020-09-29 00:00:00
EulerOS 2.0 SP8 : openldap (EulerOS-SA-2020-1872)
2020-08-28 00:00:00
SUSE SLED15 / SLES15 Security Update : openldap2 (SUSE-SU-2020:2581-1)
2020-09-10 00:00:00
suse
suse
Security update for openldap2 (moderate)
2020-09-19 00:00:00
Security update for openldap2 (moderate)
2020-09-12 00:00:00
veracode
veracode
Man-in-the-Middle
2020-07-17 04:48:01
ubuntucve
ubuntucve
CVE-2020-15719
2020-07-14 00:00:00
osv
osv
BIT-openldap-2020-15719
2024-03-06 11:02:33
cve
cve
CVE-2020-15719
2020-07-14 14:15:17
rosalinux
rosalinux
Advisory ROSA-SA-2024-2372
2024-03-12 12:48:13
debiancve
debiancve
CVE-2020-15719
2020-07-14 14:15:17
redhat
redhat
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
avleonov
avleonov
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:P/A:N
4.2 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
6.4 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.4%
Related for F5:K000140042