Vulnerabilities > NET Ldap Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-11-21 | CVE-2014-0083 | Use of Password Hash With Insufficient Computational Effort vulnerability in multiple products The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords. | 5.5 |
2017-12-17 | CVE-2017-17718 | Improper Certificate Validation vulnerability in Net-Ldap Project Net-Ldap The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL Certificate Validation. | 5.9 |