Lucene search
+L

16 matches found

F5 Networks
F5 Networks
added 2024/06/18 8:11 p.m.34 views

K000140042: libldap vulnerability CVE-2020-15719

Security Advisory Description libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 i...

4.2CVSS6.8AI score0.02417EPSS
Exploits0
Rosalinux
Rosalinux
added 2024/03/12 12:48 p.m.29 views

Advisory ROSA-SA-2024-2372

Software: openldap 2.4.46 OS: ROSA Virtualization 2.1 packageevrstring: openldap-2.4.46-10.el8.src.rpm CVE-ID: CVE-2020-15719 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: libldap in some third-party OpenLDAP packages has a certificate validation error when the third-party package asserts support for...

4.2CVSS7.3AI score0.02417EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2020:2581-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.2CVSS4.8AI score0.02417EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/21 12:0 a.m.22 views

openSUSE Security Update : openldap2 (openSUSE-2020-1459)

This update for openldap2 fixes the following issues : - bsc1174154 - CVE-2020-15719 - This resolves an issue with x509 SAN's falling back to CN validation in violation of rfc6125. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptiv...

4.2CVSS6.8AI score0.02417EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/09/20 12:0 a.m.16 views

openSUSE: Security Advisory for openldap2 (openSUSE-SU-2020:1459-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

4.2CVSS4.8AI score0.02417EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/19 12:0 a.m.41 views

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2020:1459-1 Rating: moderate References: 1174154 Cross-References: CVE-2020-15719 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...

4.2CVSS4.6AI score0.02417EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/09/14 12:0 a.m.29 views

openSUSE Security Update : openldap2 (openSUSE-2020-1416)

This update for openldap2 fixes the following issues : - bsc1174154 - CVE-2020-15719 - This resolves an issue with x509 SAN's falling back to CN validation in violation of rfc6125. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptiv...

4.2CVSS6.8AI score0.02417EPSS
Exploits0References2
OSV
OSV
added 2020/09/12 2:21 p.m.1 views

OPENSUSE-SU-2020:1416-1 Security update for openldap2

This update for openldap2 fixes the following issues: - bsc1174154 - CVE-2020-15719 - This resolves an issue with x509 SAN's falling back to CN validation in violation of rfc6125. This update was imported from the SUSE:SLE-15:Update update project...

4.2CVSS4.4AI score0.02417EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/09/10 12:0 a.m.18 views

SUSE SLED15 / SLES15 Security Update : openldap2 (SUSE-SU-2020:2581-1)

This update for openldap2 fixes the following issues : bsc1174154 - CVE-2020-15719 - This resolves an issue with x509 SAN's falling back to CN validation in violation of rfc6125. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

4.2CVSS6.8AI score0.02417EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/08/31 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-1872)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.2CVSS4.8AI score0.02417EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/28 12:0 a.m.22 views

EulerOS 2.0 SP8 : openldap (EulerOS-SA-2020-1872)

According to the version of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It...

4.2CVSS6.9AI score0.02417EPSS
Exploits0References2
NVD
NVD
added 2020/07/14 2:15 p.m.13 views

CVE-2020-15719

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux...

4.2CVSS0.02417EPSS
Exploits0References7
OSV
OSV
added 2020/07/14 2:15 p.m.5 views

CVE-2020-15719

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux...

4.2CVSS4.4AI score
Exploits0References7
OSV
OSV
added 2020/07/14 2:15 p.m.1 views

DEBIAN-CVE-2020-15719

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux...

4.2CVSS6.3AI score0.02417EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/14 1:47 p.m.49 views

CVE-2020-15719

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux...

4.3AI score0.02417EPSS
Exploits0References7
CVE
CVE
added 2020/07/14 1:47 p.m.465 views

CVE-2020-15719

CVE-2020-15719 affects libldap in certain third‑party OpenLDAP packages. A certificate‑validation flaw occurs when RFC6125 support is asserted: CN is considered valid even if SAN does not match. The issue is fixed in at least openldap-2.4.46-10.el8 (Red Hat Enterprise Linux). The connected docume...

4.2CVSS4.2AI score0.02417EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder