{"schema_version": "1.6.1", "id": "CVE-2021-36152", "summary": "Insecure TrustManager used in LDAP connections", "details": "Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions <= 0.15.0. Users should update to version 0.16.0 which addresses this issue. ", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "Apache Gobblin"}, {"last_affected": "Apache Gobblin"}]}]}], "references": [{"type": "ADVISORY", "url": "https://lists.apache.org/thread/3bxf7rbf4zh95r78jtgth6gwhr5fyl2j"}]}