What the vulnerability does

01Description

A insecure configuration for certificate verification (http.verify_mode = OpenSSL::SSL::VERIFY_NONE) may lead to verification bypass in Red Hat CloudForms 5.x.

Key dates

02Disclosure timeline

July 6, 2022 CVE published
August 6, 2024 Record updated