Unrated severityNVD Advisory· Published Jan 27, 2023· Updated Apr 3, 2025
CVE-2020-36659
CVE-2020-36659
Description
In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.3.6
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.