Lemur: LDAP Filter Injection enables post-authentication privilege escalation

Description Overview Lemur's LDAP authentication module lemur/auth/ldap.py constructs LDAP search filters using unsanitized user input via Python string interpolation. An authenticated LDAP user can inject LDAP filter metacharacters through the username field to manipulate group membership querie...

OpenPrinting CUPS: Authorization bypass via case-insensitive group-member lookup

...

CVE-2026-34397 himmelblau: NSS fake-primary group lookup reintroduces name collision risk

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From versions 2.0.0-alpha to before 2.3.9 and 3.0.0-alpha to before 3.1.1, there is a conditional local privilege escalation vulnerability in an edge-case naming collision. Only authenticated himmelblau users whose...

CVE-2026-34397

Himmelblau (versions 2.0.0-alpha–before 2.3.9 and 3.0.0-alpha–before 3.1.1) contains a conditional local privilege escalation caused by an edge-case naming collision in NSS fake-primary group lookup. Authenticated users whose mapped CN/short name exactly matches a privileged local group name (e.g...

PT-2023-35848 · Hdf5 · Hdf5

Name of the Vulnerable Software and Affected Versions: HDF5 affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash state includes functions such as H5MM xstrdup, H5G ent to link, and H5G stab lookup cb. Recommendations: At the moment, there i...