Lucene search
K

32 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/11 12:9 p.m.5 views

Security Bulletin: Multiple vulnerabilities in IBM Tivoli Network Manager IP Edition

Summary Multiple vulnerabilities were addressed in IBM Tivoli Network Manager IP Edition 4.2.0.24 IFix 1 Vulnerability Details CVEID:CVE-2025-11143 DESCRIPTION: The Jetty URI parser has some key differences to other common parsers when evaluating invalid or unusual URIs. Differential parsing of...

9.9CVSS6.6AI score0.01127EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/05 7:56 a.m.22 views

Important: Red Hat Security Advisory: Red Hat Build of Apache Camel 4.14 for Quarkus 3.27 update is now available (RHBQ 3.27.3.SP1)

An update for Red Hat Build of Apache Camel 4.14 for Quarkus 3.27 update is now available RHBQ 3.27.3.SP1. The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products. Red Hat Product...

9.3CVSS5.9AI score0.00758EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/01/09 8:54 a.m.5 views

CVE-2021-41232

Thunderdome is an open source agile planning poker tool in the theme of Battling for points. In affected versions there is an LDAP injection vulnerability which affects instances with LDAP authentication enabled. The provided username is not properly escaped. This issue has been patched in versio...

9.8CVSS7.2AI score0.01467EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-2275

Malware in sbrugna...

9.8CVSS9.3AI score0.01467EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13904

Malware in sbrugna...

6.4CVSS6.1AI score0.01058EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-7129

Malware in sbrugna...

9.8CVSS9.2AI score0.01876EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24409

Malware in sbrugna...

7.5CVSS7.5AI score0.01466EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0603

Malware in sbrugna...

7.5CVSS7.6AI score0.02117EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-14836

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00254EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-31573

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00902EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-46075

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0071EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1598

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.01103EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10030

Malicious code in bioql PyPI...

2.7CVSS6.6AI score0.00254EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12528

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00693EPSS
Exploits0References1
CVE
CVE
added 2025/07/21 5:48 p.m.29 views

CVE-2025-52575

CVE-2025-52575 maps to EspoCRM 9.1.6 and earlier, which are vulnerable to blind LDAP injection when LDAP authentication is enabled. An unauthenticated remote attacker can manipulate LDAP queries by injecting crafted inputs (e.g., wildcard characters) to bypass authentication, enumerate usernames,...

6.5CVSS7.5AI score0.00705EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/07/21 5:48 p.m.6 views

CVE-2025-52575 EspoCRM vulnerable to LDAP Injection through Improper Neutralization of Special Elements

EspoCRM is an Open Source CRM Customer Relationship Management software. EspoCRM versions 9.1.6 and earlier are vulnerable to blind LDAP Injection when LDAP authentication is enabled. A remote, unauthenticated attacker can manipulate LDAP queries by injecting crafted input containing wildcard...

6.5CVSS7.2AI score0.00705EPSS
Exploits1References4
Veracode
Veracode
added 2025/06/12 7:3 a.m.5 views

LDAP Injection

Mattermost is vulnerable to LDAP Injection. The vulnerability is due to improper validation due to failure to sanitize LDAP group ID attributes in the /api/v4/ldap/groups/remoteid/link API when objectGUID is used as the Group ID Attribute...

4.1CVSS4.2AI score0.00236EPSS
Exploits0References6Affected Software2
RedhatCVE
RedhatCVE
added 2025/05/23 7:10 a.m.9 views

CVE-2024-54852

When LDAP connection is activated in Teedy versions between 1.9 to 1.12, the username field of the login form is vulnerable to LDAP injection. Due to improper sanitization of user input, an unauthenticated attacker is then able to perform various malicious actions, such as creating arbitrary...

9.8CVSS7.5AI score0.00743EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:42 a.m.9 views

CVE-2024-37782

An LDAP injection vulnerability in the login page of Gladinet CentreStack v13.12.9934.54690 allows attackers to access sensitive data or execute arbitrary commands via a crafted payload injected into the username field...

9.8CVSS7.8AI score0.00981EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:44 p.m.6 views

CVE-2022-45801

Apache StreamPark 1.0.0 to 2.0.0 have a LDAP injection vulnerability. LDAP Injection is an attack used to exploit web based applications that construct LDAP statements based on user input. When an application fails to properly sanitize user input, it's possible to modify LDAP statements through...

5.4CVSS7.9AI score0.01103EPSS
Exploits0References1
Rows per page
Query Builder