CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

ATTACKERKB•added 2026/05/11 5:11 p.m.•4 views

CVE-2026-3048

An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP server...

5.1CVSS5.8AI score0.00059EPSS

Exploits0References3Affected Software1

Github Security Blog•added 2025/11/25 6:32 p.m.•8 views

Duplicate Advisory: Keycloak LDAP User Federation provider enables admin-triggered untrusted Java deserialization

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4hx9-48xh-5mxr. This link is maintained to preserve external references. Original Description A flaw was found in the Keycloak LDAP User Federation provider. This vulnerability allows an authenticated realm...

5.5CVSS6.3AI score0.00062EPSS

Exploits0References11Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by