High severity7.5NVD Advisory· Published Jul 30, 2020· Updated Jun 17, 2026
CVE-2020-16162
CVE-2020-16162
Description
An issue was discovered in RIPE NCC RPKI Validator 3.x through 3.1-2020.07.06.14.28. Missing validation checks on CRL presence or CRL staleness in the X509-based RPKI certificate-tree validation procedure allow remote attackers to bypass intended access restrictions by using revoked certificates. NOTE: there may be counterarguments related to backwards compatibility
Affected products
2- RIPE NCC/RPKI Validatordescription
- Range: 3.x through 3.1-2020.07.06.14.28
Patches
Vulnerability mechanics
References
2- github.com/RIPE-NCC/rpki-validator-3/issues/162nvdThird Party Advisory
- github.com/RIPE-NCC/rpki-validator-3/issues/232nvdThird Party Advisory
News mentions
0No linked articles in our index yet.