An issue exists in Erlang/OTP prior to 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root Certification Authority.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
erlang erlang/otp |
||
fedoraproject fedora 33 |