2 matches found
CVE-2018-8901
An issue was discovered in Ivanti Avalanche for all versions between 5.3 and 6.2. A local user with database access privileges can read the encrypted passwords for users who authenticate via LDAP to Avalanche services. These passwords are stored in the Avalanche databases. This issue only affects...
CVE-2018-8901
Ivanti Avalanche vulnerability CVE-2018-8901 affects version 5.3–6.2. A local user with database access can read encrypted passwords for LDAP-authenticated users, with passwords stored in Avalanche databases. Impact is information disclosure for LDAP-enabled configurations. The root cause is desc...