EUVD-2003-0725

Malware in sbrugna...

CVE-2024-12111

CVE-2024-12111 describes an LDAP injection vulnerability in OpenText Privileged Access Manager that can lead to authentication bypass. Affected products: OpenText Privileged Access Manager; affected versions: 23.3(4.4) and 24.3(4.5). Root cause: LDAP authentication path injection; impact: authent...

Read-Only LDAP Authentication Bypass Vulnerability in Lenovo XClarity Controller (XCC) Firmware - Lenovo Support US

No description provided...

LDAP authentication vulnerability in Access Gateway Advanced Access Control

Description of Problem If the Advanced Access Control option AAC of Access Gateway is configured to use LDAP authentication then it is possible for a user to logon without supplying valid credentials. This vulnerability only affects AAC Version 4.2 deployments that are using LDAP authentication;...

USN-1875-1: OpenStack Keystone vulnerabilities

Eoghan Glynn and Alex Meade discovered that Keystone did not properly perform expiry checks for the PKI tokens used in Keystone. If Keystone were setup to use PKI tokens, a previously authenticated user could continue to use a PKI token for longer than intended. This issue only affected Ubuntu...