PT-2026-45280

Name of the Vulnerable Software and Affected Versions Apache Directory LDAP API version 2.1.7 Description The LDAP client implementation fails to verify if the server certificate matches the intended LDAP hostname. Although the certificate chain is validated against a trusted authority, the lack ...

CVE-2026-9801

CVE-2026-9801 affects Keycloak. A remote attacker with high privileges (e.g., a realm administrator configuring a malicious LDAP server or compromising an upstream LDAP server) can trigger an OutOfMemoryError by sending a malformed LDAP password policy response during authentication, causing the ...

Astra Linux - уязвимость в 389-ds-base

A flaw was discovered in RHDS 11 and RHDS 12. While browsing entries using LDAP, the system attempts to decode the userPassword attribute instead of the userCertificate attribute, which could lead to sensitive information being leaked. An attacker with a local account where cockpit-389-ds is...

CVE-2026-3048

An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP server...

PT-2026-39650

An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP server...

GHSA-VR7C-R5GJ-J3W5 Lemur: LDAP Authentication Globally Disables TLS Certificate Verification When LDAP_USE_TLS Is Enabled

Description Overview When LDAP TLS is enabled LDAPUSETLS = True, Lemur's LDAP authentication module unconditionally disables TLS certificate verification at the global ldap module level. This allows a man-in-the-middle attacker positioned between Lemur and the LDAP server to intercept all...

CVE-2026-31828

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.5.2-alpha.13 and 8.6.26, the LDAP authentication adapter is vulnerable to LDAP injection. User-supplied input authData.id is interpolated directly into LDAP Distinguished Names DN an...

PT-2025-44488

Name of the Vulnerable Software and Affected Versions Nagios Fusion versions prior to 4.2.0 Description Nagios Fusion versions prior to 4.2.0 have a stored cross-site scripting XSS issue in the LDAP/AD authentication-server configuration. User input that is not properly sanitized can be stored an...

CVE-2025-35431

CISA Thorium does not escape user controlled strings used in LDAP queries. An authenticated remote attacker can modify LDAP authorization data such as group memberships. Fixed in 1.1.1...

phpIPAM Injection Vulnerability

phpIPAM is an open source PHP and MySQL based IP address management application IPAM. An injection vulnerability exists in versions prior to Phpipam v1.5.2, which stems from the dname parameter in /users/ad-search-result.php containing an LDAP injection vulnerability that allows an attacker to...

CVE-2022-30200

Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...

AZL-10662 CVE-2021-3670 affecting package samba 4.12.5-7

MaxQueryDuration not honoured in Samba AD DC LDAP...

Microsoft Lightweight Directory Access Protocol 安全漏洞

Microsoft Lightweight Directory Access Protocol LDAP is a directory service protocol from Microsoft that runs on a layer above the TCP/IP stack. A security vulnerability exists in the Microsoft Lightweight Directory Access Protocol, which affects the following products and versions: Windows 10...

The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted request...

UBUNTU-CVE-2021-42392

The org.h2.util.JdbcUtils.getConnection method of the H2 database takes as parameters the class name of the driver and URL of the database. An attacker may pass a JNDI driver name and a URL leading to a LDAP or RMI servers, causing remote code execution. This can be exploited through various atta...

log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value

A flaw was found in the Apache Log4j logging library in versions from 2.0.0 and before 2.15.0. A remote attacker who can control log messages or log message parameters, can execute arbitrary code on the server via JNDI LDAP endpoint...

SAP HANA 安全漏洞

SAP HANA is a set of high-performance real-time data analytics platform from Germany's SAP SAP. The platform provides data query functions to support users to query real-time business data query and analysis. A security vulnerability exists in SAP HANA version 2.0, which stems from the LDAP...

DEBIAN-CVE-2018-16851

Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the client, the entries are cached in a single memory object with a maximum size of 256MB. When this siz...

curl: LDAP NULL pointer dereference

A NULL pointer dereference flaw was found in the way libcurl checks values returned by the openldap ldapgetattributeber function. A malicious LDAP server could use this flaw to crash a libcurl client application via a specially crafted LDAP reply...

Microsoft Windows LDAP Remote Elevation of Privilege Vulnerability

Microsoft Windows is the popular computer operating system. Microsoft Windows fails to correctly calculate the LDAP request buffer length is implemented with an elevation of privilege vulnerability that can be exploited by an attacker to send malicious traffic to a domain controller to elevate...