16 matches found
USN-8136-1: Dovecot vulnerabilities
It was discovered that Dovecot incorrectly handled invalid base64 SASL data. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 25.10. CVE-2025-59028 It was discovered that Dovecot script decode2text.sh incorrectly handled zip files. An attacke...
Default credentials
User authentication with username and password credentials is ineffective in OpenText Micro Focus Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server including product variants such as Enterprise Test Server, versions 7.0 patch updates 19 and 20, 8.0 patch updates 8 and 9, and...
CVE-2023-4501 Authentication bypass in OpenText (Micro Focus) Enterprise Server
User authentication with username and password credentials is ineffective in OpenText Micro Focus Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server including product variants such as Enterprise Test Server, versions 7.0 patch updates 19 and 20, 8.0 patch updates 8 and 9, and...
CVE-2023-4501 Authentication bypass in OpenText (Micro Focus) Enterprise Server
User authentication with username and password credentials is ineffective in OpenText Micro Focus Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server including product variants such as Enterprise Test Server, versions 7.0 patch updates 19 and 20, 8.0 patch updates 8 and 9, and...
CVE-2022-37397 The software is vulnerable when using LDAP-based authentication in YCQL with Microsoft’s Active Directory
An issue was discovered in the YugabyteDB 2.6.1 when using LDAP-based authentication in YCQL with Microsoft’s Active Directory. When anonymous or unauthenticated LDAP binding is enabled, it allows bypass of authentication with an empty password...
GHSA-8WCW-CW2F-H4G2 Improper Authentication (empty password) in Jenkins Active Directory Plugin
Jenkins Active Directory Plugin implements two separate modes: Integration with ADSI on Windows, and an OS agnostic LDAP-based mode. The Windows/ADSI mode does not specifically prohibit use of empty passwords in Active Directory Plugin prior to 2.20 and 2.16.1. If the Active Directory server allo...
CVE-2020-26131
Issues were discovered in Open DHCP Server Regular 1.75 and Open DHCP Server LDAP Based 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe Regular or the OpenDHCPLdap.exe LDAP Based binary...
Security Bulletin: IBM QRadar SIEM is vulnerable to KDC Spoofing (CVE-2019-4545)
Summary IBM QRadar SIEM when configured to use Active Directory Authentication may be susceptible to spoofing attacks. Vulnerability Details CVEID: CVE-2019-4545 DESCRIPTION: IBM QRadar SIEM when configured to use Active Directory Authentication may be susceptible to spoofing attacks. CVSS Base...
Denial Of Service (DoS)
autofs is vulnerable to denial of service DoS attacks. The vulnerability exists due to an unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified...
CVE-2012-2697
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
CVE-2012-2697
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
Design/Logic Flaw
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
CVE-2012-2697
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
CVE-2012-2697
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
CVE-2012-2697
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux RHEL 5, allows local users to cause a denial of service autofs crash and delayed mounts or prevent "mount expiration" via unspecified vectors related to "using an LDAP-based automount map."...
IBM DB2 Multiple Vulnerabilities (Linux)
The host is installed with IBM DB2 and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb2multdosvulnlin01.nasl 5055 2017-01-20 14:08:39Z teissa $ IBM DB2 Multiple Vulnerabilities Linux Authors: Antu Sanadi Updated KB Name Antu Sanadi on 2009-12-21 Copyright:...