Lucene search

K

Alerta Security Vulnerabilities

cve
cve

CVE-2020-26214

In Alerta before version 8.1.0, users may be able to bypass LDAP authentication if they provide an empty password when Alerta server is configure to use LDAP as the authorization provider. Only deployments where LDAP servers are configured to allow unauthenticated authentication mechanism for...

9.8CVSS

9.6AI Score

0.013EPSS

2020-11-06 06:15 PM
45
3