Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:28 a.m.2 views

CVE-2019-12046

LemonLDAP::NG -2.0.3 has Incorrect Access Control...

9.8CVSS6.8AI score0.02798EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/05/22 4:29 p.m.21 views

CVE-2019-12046

LemonLDAP::NG -2.0.3 has Incorrect Access Control...

9.8CVSS7.2AI score0.02798EPSS
Exploits1References2
Circl
Circl
added 2019/05/22 3:48 p.m.4 views

CVE-2019-12046

creationtimestamp| type| source ---|---|--- 2019-05-22 15:48:20+00:00| seen| https://t.me/cvemitreorg/125...

9.8CVSS7.3AI score0.02798EPSS
Exploits1References1
CVE
CVE
added 2019/05/22 3:7 p.m.88 views

CVE-2019-12046

Summary: CVE-2019-12046 affects LemonLDAP::NG -2.0.3 and is due to Incorrect Access Control. The issue has been observed across multiple advisories and OSV/Red Hat entries, confirming a vulnerability in the 2.0.3 line. The NVD/NIST entry notes high severity (CVSS v3: CRITICAL, 9.8) with network i...

9.8CVSS9.3AI score0.02798EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2019/05/22 3:7 p.m.16 views

CVE-2019-12046

LemonLDAP::NG -2.0.3 has Incorrect Access Control...

9.5AI score0.02798EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2019/05/19 12:0 a.m.97 views

Debian: Security Advisory (DLA-1790-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02798EPSS
Exploits1References3
Debian
Debian
added 2019/05/18 7:17 p.m.173 views

[SECURITY] [DLA 1790-1] lemonldap-ng security update

Package : lemonldap-ng Version : 1.3.3-1+deb9u1 CVE ID : CVE-2019-12046 Debian Bug : 928944 Erratum: bad versions An attack vector was discovered by lemonldap-ng developers. When the SAML or CAS service provider is enable and the administrator has chosen to store SAML/CAS tokens in the session...

9.8CVSS9.4AI score0.02798EPSS
Exploits1
Debian
Debian
added 2019/05/18 7:12 p.m.162 views

[SECURITY] [DLA 1791-1] lemonldap-ng security update

Package : lemonldap-ng Version : 1.9.7-3+deb9u1 CVE ID : CVE-2019-12046 Debian Bug : 928944 An attack vector was discovered by the lemonldap-ng developers. When the SAML or CAS service provider is enabled and the administrator has chosen to store the SAML/CAS tokens in the session database, an...

9.8CVSS9.4AI score0.02798EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.19 views

Debian DSA-4446-1 : lemonldap-ng - security update

It was discovered that the Lemonldap::NG web SSO system performed insufficient validation of session tokens if the 'tokenUseGlobalStorage'option is enabled, which could grant users with access to the main session database access to an anonymous session. C Tenable Network Security, Inc. The...

9.8CVSS8.3AI score0.02798EPSS
Exploits1References4
Debian
Debian
added 2019/05/14 9:20 p.m.110 views

[SECURITY] [DSA 4446-1] lemonldap-ng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4446-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 14, 2019 https://www.debian.org/security/faq -...

9.8CVSS9.5AI score0.02798EPSS
Exploits1
Rows per page
Query Builder