CVE-2026-4045

A flaw has been found in projectsend up to r1945. This impacts an unknown function of the file includes/Classes/Auth.php. Executing a manipulation of the argument ldapemail can lead to observable response discrepancy. The attack can be executed remotely. A high complexity level is associated with...

Linux Distros Unpatched Vulnerability : CVE-2020-36659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache::Session::Browseable before 1.3.6, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the...

OESA-2023-1248 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.CVE-2023-0922...

OESA-2023-1232 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection.CVE-2023-0922...

Fedora 36 : libldb / samba (2023-1c172e3264)

The remote Fedora 36 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-1c172e3264 advisory. Update to ldb 2.5.3 and samba 4.16.10 Security fixes for CVE-2023-0922, CVE-2023-0614 Tenable has extracted the preceding description block directly...

Samba 4.x < 4.16.10 / 4.17.x < 4.17.7 / 4.18.x < 4.18.1 Multiple Vulnerabilities

The version of Samba running on the remote host is potentially affected by multiple vulnerabilities, as follows: - The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure via LDAP filters was insufficient and an attacker may be able to obtain confidential...

AZL-37020 CVE-2023-0922 affecting package samba for versions less than 4.18.3-1

The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...

SUSE SLES15 / openSUSE 15 Security Update : samba (SUSE-SU-2023:1682-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1682-1 advisory. - The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset password...

Debian dla-3285 : libapache-session-browseable-perl - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3285 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3285-1 [email protected]...

CVE-2020-36658

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

CVE-2020-36658

In Apache::Session::LDAP before 0.5, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used. NOTE: this can, for example, be fixed in conjunction with the CVE-2020-16093 fix...

Design/Logic Flaw

In LemonLDAP::NG aka lemonldap-ng through 2.0.8, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used...

PT-2022-8581 · Unknown · Net::Ldaps +1

Name of the Vulnerable Software and Affected Versions: LemonLDAP::NG versions prior to 2.0.9 Description: The issue concerns the validity of X.509 certificates not being checked by default when connecting to remote LDAP backends. This is due to the default configuration of the Net::LDAPS module f...

[SECURITY] Fedora 32 Update: libldb-2.1.4-1.fc32

An extensible library that implements an LDAP like API to access remote LDAP servers, or use local tdb databases...

RHEL 6 / 7 : libldb (RHSA-2016:0009)

Updated libldb packages that fix two security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...

Kerio MailServer 5.x/6.x Remote LDAP Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21091/info Kerio MailServer is prone to a denial-of-service vulnerability due to a flaw when handling malformed network traffic. Successful exploits will result in denial-of-service conditions. !/usr/bin/env python kms1.p...