CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2026/04/21 9:31 p.m.•4 views

EUVD-2026-24380

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Microsoft Active Directory. The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via LDAP to compromise Orac...

5.9CVSS5.7AI score0.00027EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 9:48 a.m.•5 views

CVE-2020-17477

Incorrect LDAP ACLs in ucs-school-ldap-acls-master in UCS@school before 4.4v5-errata allow remote teachers, staff, and school administrators to read LDAP password hashes sambaNTPassword, krb5Key, sambaPasswordHistory, and pwhistory via LDAP search requests. For example, a teacher can gain...

6.5CVSS7.3AI score0.00061EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-17568

Malware in sbrugna...

4.9CVSS5.2AI score0.00297EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-0378

Malware in sbrugna...

7.5CVSS8.2AI score0.03117EPSS

Exploits0References51

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-4831

Malware in sbrugna...

5.8CVSS5.6AI score0.00185EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2005-2512

Malware in sbrugna...

10CVSS6.4AI score0.00397EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-9429

Malware in sbrugna...

6.5CVSS6.5AI score0.00061EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-37397

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00177EPSS

Exploits0References1

Hacker One•added 2025/07/17 6:40 p.m.•17 views

curl: curl ASSERTs when accessing an LDAP URL

Summary: curl can crash when accessing an LDAP URL. curl ldap://localhost:1388 curl: result.c:930: tryread1msg: Assertion !BERBVISEMPTY &resoid ' failed. Aborted core dumped No AI was used in the production of this report. This was enabled by oss-fuzz, but initiated by me adding LDAP support to...

6.8AI score

Exploits0

RedhatCVE•added 2025/05/23 7:33 a.m.•10 views

CVE-2024-22326

IBM System Storage DS8900F 89.22.19.0, 89.30.68.0, 89.32.40.0, 89.33.48.0, 89.40.83.0, and 89.40.93.0 could allow a remote user to create an LDAP connection with a valid username and empty password to establish an anonymous connection. IBM X-Force ID: 279518...

6.3CVSS6.7AI score0.00066EPSS

Exploits0References1

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2013-0199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the 1 ipaNTTrustAuthIncoming and 2 ipaNTTrustAuthOutgoing attributes, which allow...

5CVSS5.6AI score0.00435EPSS

Exploits0References2

Positive Technologies•added 2024/02/01 12:0 a.m.•5 views

PT-2024-14128 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 10.0.12 Description: The issue is related to LDAP injection when authentication is made against a LDAP server. This can be exploited by a remote attacker to perform LDAP injection using the authentication form. The...

10CVSS7.2AI score0.94395EPSS

Exploits26References159

Positive Technologies•added 2023/10/26 12:0 a.m.•2 views

PT-2023-11480 · Unknown · Ucs@School

Name of the Vulnerable Software and Affected Versions: UCS@school versions prior to 4.4v5-errata Description: The issue is related to incorrect LDAP ACLs in ucs-school-ldap-acls-master, allowing remote teachers, staff, and school administrators to read LDAP password hashes, including...

6.5CVSS6.5AI score0.00061EPSS

Exploits0References5

Positive Technologies•added 2022/11/23 12:0 a.m.•1 views

PT-2022-6585 · Apache · Apache Streampark

Name of the Vulnerable Software and Affected Versions: Apache StreamPark versions 1.0.0 through 2.0.0 Description: The issue is related to an LDAP injection vulnerability, which is an attack used to exploit web-based applications that construct LDAP statements based on user input. When an...

5.5CVSS5.7AI score0.01379EPSS

Exploits0References10

NVD•added 2021/03/02 10:15 p.m.•9 views

CVE-2020-12529

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2 There is a SSRF in the LDAP access check, allowing an attacker to scan for open ports...

5.8CVSS0.00185EPSS

Exploits0References1

Prion•added 2021/03/02 10:15 p.m.•10 views

Design/Logic Flaw

5CVSS6.1AI score0.00185EPSS

Exploits0References1Affected Software2

Cvelist•added 2021/03/02 9:15 p.m.•9 views

CVE-2020-12529

5.8CVSS5.5AI score0.00185EPSS

Exploits0References1

Fedora•added 2020/05/07 3:27 a.m.•33 views

[SECURITY] Fedora 30 Update: libldb-1.5.7-1.fc30

An extensible library that implements an LDAP like API to access remote LDAP servers, or use local tdb databases...

7.5CVSS3.8AI score0.14522EPSS

Exploits0

Kitploit•added 2018/11/24 12:43 p.m.•1007 views

Sn1per v6.0 - Automated Pentest Framework For Offensive Security Experts

Sn1per Community Edition is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Sn1per Professional is Xero Security's premium reporting addon for Professional Penetration Testers, Bug Bounty Researchers and Corporate Security teams to manage...

9.8CVSS10AI score0.94489EPSS

Exploits340References3

Kitploit•added 2018/07/05 1:45 p.m.•3398 views

Sn1per v5.0 - Automated Pentest Recon Scanner

9.8CVSS10AI score0.94489EPSS

Exploits340References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by