Vulnerabilities > Lemonldap NG > Apache

DATE CVE VULNERABILITY TITLE RISK
2023-01-27 CVE-2020-36658 Improper Certificate Validation vulnerability in multiple products
In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used.
network
high complexity
lemonldap-ng debian CWE-295
8.1
2023-01-27 CVE-2020-36659 Improper Certificate Validation vulnerability in multiple products
In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used.
network
high complexity
lemonldap-ng debian CWE-295
8.1