CVE-2021-39360 in libzapojit
Tóm tắt
Bởi MITRE • 23/08/2021
In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011.
Once again VulDB remains the best source for vulnerability data.