Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/20 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-28862

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LemonLDAP::NG before 2.16.1. Weak session ID generation in the AuthBasic handler and incorrect failure handling during a password che...

9.8CVSS7.3AI score0.00075EPSS
Exploits1References2
Debian
Debianadded 2023/07/14 10:43 a.m.11 views

[SECURITY] [DLA 3496-1] lemonldap-ng security update

Debian LTS Advisory DLA-3496-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin July 14, 2023 https://wiki.debian.org/LTS Package : lemonldap-ng Version : 2.0.2+ds-7+deb10u9 CVE ID : CVE-2023-28862 Issues were discovered in Lemonldap::NG, an OpenID-Connect, CAS and...

9.8CVSS7.3AI score0.00075EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2023/07/14 12:0 a.m.14 views

Debian dla-3496 : lemonldap-ng - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3496 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3496-1 [email protected] https://www.debian.org/lts/security/...

9.8CVSS8.4AI score0.00075EPSS
Exploits1References4
Circl
Circladded 2023/03/31 8:22 p.m.3 views

CVE-2023-28862

creationtimestamp| type| source ---|---|--- 2023-03-31 20:22:27+00:00| seen| https://t.me/cibsecurity/61258...

9.8CVSS8.6AI score0.00075EPSS
Exploits1References1
OSV
OSVadded 2023/03/31 5:15 p.m.24 views

CVE-2023-28862

An issue was discovered in LemonLDAP::NG before 2.16.1. Weak session ID generation in the AuthBasic handler and incorrect failure handling during a password check allow attackers to bypass 2FA verification. Any plugin that tries to deny session creation after the store step does not deny an...

9.8CVSS9.7AI score
Exploits0References3
CVE
CVEadded 2023/03/31 12:0 a.m.59 views

CVE-2023-28862

LemonLDAP::NG prior to 2.16.1 contains a vulnerability where weak session ID generation in the AuthBasic handler and flawed password-check failure handling can allow bypassing two-factor authentication. Additionally, plugins that deny session creation after the store step do not deny an AuthBasic...

9.8CVSS9.3AI score0.00075EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/31 12:0 a.m.4 views

CVE-2023-28862

An issue was discovered in LemonLDAP::NG before 2.16.1. Weak session ID generation in the AuthBasic handler and incorrect failure handling during a password check allow attackers to bypass 2FA verification. Any plugin that tries to deny session creation after the store step does not deny an...

6.9AI score0.00075EPSS
Exploits1References3
Rows per page
Query Builder