CVE-2015-1816

Name of the Vulnerable Software and Affected Versions Forman versions prior to 1.7.4

Description The issue allows man-in-the-middle attackers to spoof LDAP servers via a crafted certificate because it does not verify SSL certificates for LDAP connections.

Recommendations For versions prior to 1.7.4, update to version 1.7.4 or later to resolve the issue.