2 matches found
CVE-2022-27820
OWASP Zed Attack Proxy ZAP through w2022-03-21 does not verify the TLS certificate chain of an HTTPS server...
CVE-2022-27820
The CVE-2022-27820 entry concerns OWASP Zed Attack Proxy (ZAP) prior to or around w2022-03-21 where TLS certificate chain verification for HTTPS servers is not performed. Connected advisories and Red Hat Linked CVEs confirm this as a trust-management issue affecting ZAP. The impact described is l...