---

CVE-2021-3601 - log back

CVE-2021-3601 edited at 16 Jun 2021 08:33:28
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Insufficient validation
Description	+ OpenSSL 1.0.2 will accept a certificate with explicitly set Basic Constraints to CA:FALSE as a valid CA if it is present in the trusted bundle.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1970201 + https://github.com/openssl/openssl/issues/5236

CVE-2021-3601 created at 16 Jun 2021 08:32:38
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes