Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.8 views

RHEL 8 : 389-ds:1.4 (RHSA-2026:26459)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:26459 advisory. 389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server a...

7.5CVSS6AI score0.00815EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:17 p.m.10 views

CVE-2026-33432

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, Roxy-WI constructs an LDAP search filter by directly concatenating the user-supplied login username into the filter string without...

9.1CVSS5.5AI score0.00423EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2026/04/22 12:0 a.m.110 views

📄 Dovecot 3.1.0 Authentication Bypass / User Enumeration

This Metasploit auxiliary module targets an LDAP injection vulnerability in Dovecot mail servers that can lead to authentication bypass or user enumeration via IMAP/POP3. Version 3.1.0 is affected...

5.3CVSS5.8AI score0.00286EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2024/10/15 7:0 a.m.4 views

The Samba AD DC administration tool when operating against a remote LDAP server will by default send new or reset passwords over a signed-only connection.

...

5.9CVSS6.7AI score0.00484EPSS
Exploits0
OSV
OSV
added 2022/09/05 7:15 a.m.4 views

CVE-2022-39050

An attacker who is logged into OTRS as an admin user may manipulate customer URL field to store JavaScript code to be run later by any other agent when clicking the customer URL link. Then the stored JavaScript is executed in the context of OTRS. The same issue applies for the usage of external...

4.8CVSS5.8AI score0.00469EPSS
Exploits0References1
Rows per page
Query Builder