libsoup 2.32.2 and previous versions does not validate certificates or clear the trust flag when the ssl-ca-file does not exist, which allows remote malicious users to bypass authentication by connecting with a SSL connection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnome libsoup 2.32.2 |