Lucene search
+L

4 matches found

cve
cve
added 2021/07/27 5:32 a.m.90 views

CVE-2021-35472

CVE-2021-35472 affects LemonLDAP::NG prior to 2.0.12. The issue is a session cache corruption vulnerability that can lead to authorization bypass or spoofing. By issuing a loop of many authentication attempts, an attacker might end up authenticated as one of two different users, enabling potentia...

8.8CVSS8.8AI score0.01679EPSS
Exploits1References4Affected Software1
debian
debian
added 2021/07/23 5:27 a.m.64 views

[SECURITY] [DSA 4943-1] lemonldap-ng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4943-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 23, 2021 https://www.debian.org/security/faq -...

8.8CVSS9.4AI score0.01679EPSS
Exploits1
debian
debian
added 2021/07/23 5:27 a.m.31 views

[SECURITY] [DSA 4943-1] lemonldap-ng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4943-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 23, 2021 https://www.debian.org/security/faq -...

6CVSS2.1AI score0.01679EPSS
Exploits1
nessus
nessus
added 2021/07/23 12:0 a.m.31 views

Debian DSA-4943-1 : lemonldap-ng - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dsa-4943 advisory. Several vulnerabilities were discovered in lemonldap-ng, a Web-SSO system. The flaws could result in information disclosure, authentication bypass, or could allow an...

8.8CVSS8AI score0.01679EPSS
Exploits1References5
Rows per page
Query Builder