Lucene search
K

79 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24105

Malware in sbrugna...

8.1CVSS7.9AI score0.00422EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24104

Malware in sbrugna...

8.1CVSS7.9AI score0.00441EPSS
Exploits0References3
Fedora
Fedora
added 2025/09/18 12:58 a.m.6 views

[SECURITY] Fedora 42 Update: lemonldap-ng-2.21.3-1.fc42

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-36659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the...

8.1CVSS6.9AI score0.00559EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:36 p.m.6 views

CVE-2020-36658

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

8.1CVSS6.5AI score0.00559EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:2 p.m.9 views

CVE-2020-36659

In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-160...

8.1CVSS6.8AI score0.00559EPSS
Exploits1
Fedora
Fedora
added 2024/11/19 2:25 a.m.8 views

[SECURITY] Fedora 41 Update: lemonldap-ng-2.20.1-1.fc41

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

7.6AI score
Exploits0
Fedora
Fedora
added 2024/11/19 1:28 a.m.7 views

[SECURITY] Fedora 39 Update: lemonldap-ng-2.20.1-1.fc39

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

7.6AI score
Exploits0
Fedora
Fedora
added 2024/11/19 1:22 a.m.7 views

[SECURITY] Fedora 40 Update: lemonldap-ng-2.20.1-1.fc40

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

7.6AI score
Exploits0
OSV
OSV
added 2024/01/24 11:12 a.m.1 views

USN-6596-1 libapache-session-ldap-perl vulnerability

It was discovered that Apache::Session::LDAP incorrectly handled invalid X.509 certificates. If a user or an automated system were tricked into opening a specially crafted invalid X.509 certificate, a remote attacker could possibly use this issue to perform spoofing and obtain sensitive informati...

8.1CVSS7.3AI score0.00441EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.24 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : Apache::Session::LDAP vulnerability (USN-6596-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6596-1 advisory. It was discovered that Apache::Session::LDAP incorrectly handled invalid X.509 certificates. If a user or an automated system were tricked...

8.1CVSS7.7AI score0.00441EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/01/31 12:0 a.m.32 views

Debian dla-3285 : libapache-session-browseable-perl - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3285 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3285-1 [email protected]...

8.1CVSS7.4AI score0.00559EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/01/31 12:0 a.m.25 views

Debian dla-3284 : libapache-session-ldap-perl - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3284 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3284-1 [email protected]...

8.1CVSS7.4AI score0.00559EPSS
Exploits1References6
Debian
Debian
added 2023/01/28 3:38 p.m.103 views

[SECURITY] [DLA 3287-1] lemonldap-ng security update

Debian LTS Advisory DLA-3287-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin January 28, 2023 https://wiki.debian.org/LTS Package : lemonldap-ng Version : 2.0.2+ds-7+deb10u8 CVE ID : CVE-2020-16093 CVE-2022-37186 Two vulnerabilities were found in lemonldap-ng, an...

7.5CVSS6.9AI score0.00725EPSS
Exploits2
Debian
Debian
added 2023/01/28 12:7 p.m.49 views

[SECURITY] [DLA 3284-1] libapache-session-ldap-perl security update

Debian LTS Advisory DLA-3284-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin January 28, 2023 https://wiki.debian.org/LTS Package : libapache-session-ldap-perl Version : 0.4-1+deb10u1 CVE ID : CVE-2020-36658 In Apache::Session::LDAP before 0.5, validity of the...

8.1CVSS7.1AI score0.00559EPSS
Exploits1
OSV
OSV
added 2023/01/27 5:15 a.m.3 views

DEBIAN-CVE-2020-36659

In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-160...

8.1CVSS7AI score0.00422EPSS
Exploits0References1
OSV
OSV
added 2023/01/27 5:15 a.m.2 views

DEBIAN-CVE-2020-36658

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

8.1CVSS7.5AI score0.00441EPSS
Exploits0References1
OSV
OSV
added 2023/01/27 5:15 a.m.3 views

UBUNTU-CVE-2020-36658

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

8.1CVSS7.1AI score0.00441EPSS
Exploits0References4
Prion
Prion
added 2023/01/27 5:15 a.m.26 views

Design/Logic Flaw

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

5.1CVSS7.6AI score0.00559EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/27 12:0 a.m.5 views

CVE-2020-36659

In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-160...

8.3AI score0.00422EPSS
Exploits0References2
Rows per page
Query Builder