Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:44 a.m.7 views

CVE-2024-34162

The web interface of the affected devices is designed to hide the LDAP credentials even for administrative users. But configuring LDAP authentication to "SIMPLE", the device communicates with the LDAP server in clear-text. The LDAP password can be retrieved from this clear-text communication. As...

5.3CVSS7.2AI score0.00785EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/04/08 12:0 a.m.95 views

Fortinet Fortigate LDAP Clear-text credentials retrievable with IP modification (FG-IR-24-111)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-111 advisory. - A storing passwords in a recoverable format in Fortinet FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0...

4.4CVSS5.6AI score0.00194EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/19 9:49 a.m.11 views

CVE-2025-1075 LDAP credentials logged to Apache error log

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions 2.3.0p27, 2.2.0p40, and 2.1.0p51 EOL causes LDAP credentials to be written to Apache error log file accessible to administrators...

5.6CVSS0.00293EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/26 7:37 a.m.6 views

CVE-2024-34162

The web interface of the affected devices is designed to hide the LDAP credentials even for administrative users. But configuring LDAP authentication to "SIMPLE", the device communicates with the LDAP server in clear-text. The LDAP password can be retrieved from this clear-text communication. As...

5.3CVSS7.4AI score0.00785EPSS
Exploits1References6
OSV
OSV
added 2022/11/15 12:0 p.m.2 views

GHSA-F43M-HHJ4-Q3JG Liferay Portal and Liferay DXP Includes LDAP Credentials in the Page URL

The Test LDAP Users functionality in Liferay Portal 7.0.0 through 7.4.3.4, and Liferay DXP 7.0 fix pack 102 and earlier, 7.1 before fix pack 27, 7.2 before fix pack 17, 7.3 before update 4, and DXP 7.4 GA includes the LDAP credential in the page URL when paginating through the list of users, whic...

5.9CVSS5.5AI score0.00601EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.4 views

IGEL Universal Management Suite 信任管理问题漏洞

The IGEL Universal Management Suite IGEL UMS is a single management solution from IGEL Germany. It can be used for up to tens of thousands of endpoints running IGEL OS. A security vulnerability exists in IGEL Universal Management Suite UMS version 6.07.100, which stems from a hard-coded DES key...

5.5CVSS5.7AI score0.00295EPSS
Exploits1References3
Rows per page
Query Builder