32 matches found
EUVD-2018-0161
Malware in sbrugna...
EUVD-2022-5044
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2014-0083
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords. CVE-2014-0083 Note that Nessus relies on the presence of the package as...
SUSE CVE-2017-17718
The Net::LDAP aka net-ldap gem before 0.16.0 for Ruby has Missing SSL Certificate Validation...
DEBIAN-CVE-2020-36658
In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...
net-ldap has weak salt when generating passwords
The Ruby net-ldap gem before 0.16.2 uses a weak salt when generating SSHA passwords...
GHSA-QWGM-MXM4-3Q2C net-ldap has weak salt when generating passwords
The Ruby net-ldap gem before 0.16.2 uses a weak salt when generating SSHA passwords...
rubygem-net-ldap: Missing SSL Certificate Validation
The Net::LDAP aka net-ldap gem before 0.16.0 for Ruby has Missing SSL Certificate Validation...
CVE-2014-0083
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
Design/Logic Flaw
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
UBUNTU-CVE-2014-0083
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
CVE-2014-0083
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
CVE-2014-0083
Summary: CVE-2014-0083 concerns the Ruby net-ldap gem prior to 0.11, which uses a weak salt when generating SSHA passwords. Affected component: Ruby net-ldap (library for LDAP in Ruby). Root cause: weak or insufficiently random SSHA salt used during password hashing. Impact (as stated): password ...
CVE-2014-0083
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
CVE-2014-0083
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords...
GHSA-M7P8-9W66-9FRM net-ldap Improper Certificate Validation vulnerability
The Net::LDAP aka net-ldap gem before 0.16.0 for Ruby has Missing SSL Certificate Validation...
net-ldap Improper Certificate Validation vulnerability
The Net::LDAP aka net-ldap gem before 0.16.0 for Ruby has Missing SSL Certificate Validation...
Man-in-the-Middle (MitM)
net-ldap is vulnerable to man-in-the-middle MitM. The application does not validate SSL certificates, allowing a malicious user to pass a certificate to the application to steal credentials...
Ruby Net::LDAP gem SSL Certificate Validation Vulnerability
Ruby is a cross-platform, object-oriented, dynamically typed programming language developed by Japanese software developer Yukihiro Matsumoto.Net::LDAP aka net-ldap gem is one of the lightweight directory access modules. A security vulnerability exists in the Ruby Net::LDAP gem prior to version...
CVE-2017-17718
The Net::LDAP aka net-ldap gem before 0.16.0 for Ruby has Missing SSL Certificate Validation...