Insecure TLS Certificate Verification in pulp-consumer-client 2.4.0 through 2.6.3

Insecure TLS Certificate Verification in pulp-consumer-client 2.4.0 through 2.6.3

CVE-2015-5263 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

pulp-consumer-client 2.4.0 through 2.6.3 does not check the server's TLS certificate signatures when retrieving the server's public key upon registration.

Learn more about our Cis Benchmark Audit For Server Software.