4 matches found
CVE-2023-44038
In VeridiumID before 3.5.0, the identity provider page allows an unauthenticated attacker to discover information about registered users via an LDAP injection attack...
CVE-2023-44038
In VeridiumID before 3.5.0, the identity provider page allows an unauthenticated attacker to discover information about registered users via an LDAP injection attack...
CVE-2023-44038
CVE-2023-44038 affects VeridiumID prior to 3.5.0, where the identity provider page is vulnerable to an LDAP injection that allows an unauthenticated attacker to enumerate information about registered users. Affected product: VeridiumID (versions before 3.5.0). Root cause: LDAP injection on the id...
CVE-2023-44038
In VeridiumID before 3.5.0, the identity provider page allows an unauthenticated attacker to discover information about registered users via an LDAP injection attack...