Lucene search
Redhat.comRH:CVE-2020-15720HistoryJul 15, 2020 - 3:37 p.m.
CVE-2020-15720
2020-07-1515:37:57
redhat.com
access.redhat.com
17
0.001 Low
EPSS
Percentile
49.3%
A flaw was found in PKI, where the dogtag’s pki.client.PKIConnection class disables the python-requests certificate validation. This flaw allows an attacker to intercept a connection between a FreeIPA client and a server, and execute an active Man-in-the-Middle attack. The highest threat from this vulnerability is to confidentiality and integrity.
Related
cve
cve
CVE-2020-15720
2020-07-14 14:15:17
veracode
veracode
Man-in-the-Middle (MitM)
2020-07-15 07:25:12
prion
prion
Design/Logic Flaw
2020-07-14 14:15:00
osv
osv
CVE-2020-15720
2020-07-14 14:15:17
cvelist
cvelist
CVE-2020-15720
2020-07-14 13:46:58
debiancve
debiancve
CVE-2020-15720
2020-07-14 14:15:17
nvd
nvd
CVE-2020-15720
2020-07-14 14:15:17
nessus
nessus
RHEL 6 : pki (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : pki-core (Unpatched Vulnerability)
2024-06-03 00:00:00
Oracle Linux 8 : pki-core:10.6 / and / pki-deps:10.6 (ELSA-2020-4847)
2023-09-07 00:00:00
ubuntucve
ubuntucve
CVE-2020-15720
2020-07-14 00:00:00
oraclelinux
oraclelinux
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
2020-11-10 00:00:00
almalinux
almalinux
rocky
rocky
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
2020-11-03 12:29:58
redhat
redhat