Lucene search
HistoryFeb 20, 2023 - 4:15 p.m.
CVE-2023-25613
ldap injection
apache kerby
ldapidentitybackend
cve-2023-25613
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.1%
An LDAP Injection vulnerability exists in theย LdapIdentityBackend of Apache Kerby before 2.0.3.
Affected configurations
Node
apacheidentity_backendRange<2.0.3
Related
veracode
veracode
LDAP Injection
2023-02-23 03:21:06
github
github
Apache Kerby LdapIdentityBackend LDAP Injection vulnerability
2023-02-20 18:30:17
cve
cve
CVE-2023-25613
2023-02-20 16:15:10
prion
prion
Design/Logic Flaw
2023-02-20 16:15:00
cvelist
cvelist
CVE-2023-25613 LDAP Injection Vulnerability in Apache Kerby
2023-02-20 15:29:39
osv
osv
Apache Kerby LdapIdentityBackend LDAP Injection vulnerability
2023-02-20 18:30:17
redhatcve
redhatcve
CVE-2023-25613
2023-03-01 02:29:29
cnvd
cnvd
Apache Kerby LDAP Injection Vulnerability
2023-02-22 00:00:00
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.1%
Related for NVD:CVE-2023-25613