CVE Vulnerabilities

CVE-2025-2028

Improper Certificate Validation

Published: Aug 06, 2025 | Modified: Aug 06, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs

Weakness

The product does not validate, or incorrectly validates, a certificate.

Potential Mitigations

References