5 matches found
EUVD-2020-18793
Malware in sbrugna...
CVE-2020-26168
The LDAP authentication method in LdapLoginModule in Hazelcast IMDG Enterprise 4.x before 4.0.3, and Jet Enterprise 4.x through 4.2, doesn't verify properly the password in some system-user-dn scenarios. As a result, users clients/members can be authenticated even if they provide invalid password...
Authentication flaw
The LDAP authentication method in LdapLoginModule in Hazelcast IMDG Enterprise 4.x before 4.0.3, and Jet Enterprise 4.x through 4.2, doesn't verify properly the password in some system-user-dn scenarios. As a result, users clients/members can be authenticated even if they provide invalid password...
CVE-2020-26168
The LDAP authentication method in LdapLoginModule in Hazelcast IMDG Enterprise 4.x before 4.0.3, and Jet Enterprise 4.x through 4.2, doesn't verify properly the password in some system-user-dn scenarios. As a result, users clients/members can be authenticated even if they provide invalid password...
CVE-2020-26168
The CVE-2020-26168 entry describes a vulnerability in Hazelcast IMDG Enterprise 4.x before 4.0.3 and Jet Enterprise 4.x through 4.2 where the LDAP authentication method in LdapLoginModule does not verify passwords properly in certain system-user-dn scenarios. Consequence: clients/members can be a...