LemonLDAPNG/Apache-Session-LDAP

Releases3

Frequency2 years 11 months

Last Release almost 6 years ago

Stars2

Apache::Session::LDAP Perl module - Store Apache Session in LDAP

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-36658 ↗	Jan 27, 2023Friday, 27 January 2023, 05:15	8.1 HIGH	—
In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix.