Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2026/01/09 9:48 a.m.9 views

CVE-2020-17477

Incorrect LDAP ACLs in ucs-school-ldap-acls-master in UCS@school before 4.4v5-errata allow remote teachers, staff, and school administrators to read LDAP password hashes sambaNTPassword, krb5Key, sambaPasswordHistory, and pwhistory via LDAP search requests. For example, a teacher can gain...

6.5CVSS7.3AI score0.00376EPSS
Exploits0References1
cve
cve
added 2023/10/26 12:0 a.m.63 views

CVE-2020-17477

UCS@school before 4.4v5-errata is affected by incorrect LDAP ACLs in ucs-school-ldap-acls-master, allowing remote teachers, staff, and school administrators to read LDAP password hashes (sambaNTPassword, krb5Key, sambaPasswordHistory, pwhistory) via LDAP search requests. This can enable elevation...

6.5CVSS6.6AI score0.00376EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2023/10/26 12:0 a.m.30 views

CVE-2020-17477

Incorrect LDAP ACLs in ucs-school-ldap-acls-master in UCS@school before 4.4v5-errata allow remote teachers, staff, and school administrators to read LDAP password hashes sambaNTPassword, krb5Key, sambaPasswordHistory, and pwhistory via LDAP search requests. For example, a teacher can gain...

6.7AI score0.00376EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2023/10/26 12:0 a.m.12 views

CVE-2020-17477

Incorrect LDAP ACLs in ucs-school-ldap-acls-master in UCS@school before 4.4v5-errata allow remote teachers, staff, and school administrators to read LDAP password hashes sambaNTPassword, krb5Key, sambaPasswordHistory, and pwhistory via LDAP search requests. For example, a teacher can gain...

7.5AI score0.00376EPSS
Exploits0References1
Rows per page
Query Builder