1 results (0.001 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

OWASP Zed Attack Proxy (ZAP) through w2022-03-21 does not verify the TLS certificate chain of an HTTPS server. OWASP Zed Attack Proxy (ZAP) versiones hasta w2022-03-21, no verifica la cadena de certificados TLS de un servidor HTTPS • http://www.openwall.com/lists/oss-security/2022/03/24/3 https://github.com/zaproxy/zaproxy/issues/7165 https://github.com/zaproxy/zaproxy/releases https://www.openwall.com/lists/oss-security/2022/03/23/1 • CWE-295: Improper Certificate Validation •