Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/22 6:9 p.m.6 views

CVE-2021-35473

An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired access token from an OIDC client to access the OAuth2 handler The earliest affected version is 2.0.4...

9.1CVSS6.7AI score0.00404EPSS
Exploits0References1
osv
osv
added 2024/11/10 11:15 p.m.10 views

CVE-2021-35473

An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired access token from an OIDC client to access the OAuth2 handler The earliest affected version is 2.0.4...

9.1CVSS7AI score
Exploits0References2
cvelist
cvelist
added 2024/11/10 12:0 a.m.24 views

CVE-2021-35473

An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired access token from an OIDC client to access the OAuth2 handler The earliest affected version is 2.0.4...

0.00404EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2021/07/27 12:0 a.m.6 views

PT-2021-20923 · Unknown · Lemonldap::Ng

Name of the Vulnerable Software and Affected Versions: LemonLDAP::NG versions 2.0.4 through 2.0.12 Description: An issue was discovered in the OAuth2.0 handler where it does not verify access token validity due to a missing expiration check. This allows an attacker to use an expired access token...

9.1CVSS6.9AI score0.00404EPSS
Exploits0References13
Rows per page
Query Builder