Lucene search
Veracode Vulnerability DatabaseVERACODE:25898HistoryJul 17, 2020 - 4:48 a.m.
Man-in-the-Middle
2020-07-1704:48:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.002 Low
EPSS
Percentile
53.4%
openldap is vulnerable to man-in-the-middle attack. The TLS setup falls back to matching CN if there is a SAN that does not match the server’s host name.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openldap | eq | 2.4.46__9.el8 | |
| openldap | eq | 2.4.46__9.el8 |
References
lists.opensuse.org/opensuse-security-announce/2020-09/msg00033.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00059.html
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.1_release_notes/
access.redhat.com/errata/RHBA-2019:3674
bugs.openldap.org/show_bug.cgi?id=9266
bugzilla.redhat.com/show_bug.cgi?id=1740070
kc.mcafee.com/corporate/index?page=content&id=SB10365
www.oracle.com/security-alerts/cpuapr2022.html
Related
redhatcve
redhatcve
CVE-2020-15719
2020-07-15 15:37:57
openvas
openvas
openSUSE: Security Advisory for openldap2 (openSUSE-SU-2020:1459-1)
2020-09-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2581-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-2023)
2020-09-29 00:00:00
cvelist
cvelist
CVE-2020-15719
2020-07-14 13:47:31
nvd
nvd
CVE-2020-15719
2020-07-14 14:15:17
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.6.0 : openldap (EulerOS-SA-2020-2023)
2020-09-29 00:00:00
openSUSE Security Update : openldap2 (openSUSE-2020-1459)
2020-09-21 00:00:00
EulerOS 2.0 SP8 : openldap (EulerOS-SA-2020-1872)
2020-08-28 00:00:00
prion
prion
Design/Logic Flaw
2020-07-14 14:15:00
suse
suse
Security update for openldap2 (moderate)
2020-09-12 00:00:00
Security update for openldap2 (moderate)
2020-09-19 00:00:00
debiancve
debiancve
CVE-2020-15719
2020-07-14 14:15:17
f5
f5
K000140042: libldap vulnerability CVE-2020-15719
2024-06-18 00:00:00
cve
cve
CVE-2020-15719
2020-07-14 14:15:17
rosalinux
rosalinux
Advisory ROSA-SA-2024-2372
2024-03-12 12:48:13
ubuntucve
ubuntucve
CVE-2020-15719
2020-07-14 00:00:00
osv
osv
BIT-openldap-2020-15719
2024-03-06 11:02:33
redhat
redhat
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
avleonov
avleonov