Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-29643

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.0036EPSS
Exploits0References2
CNVD
CNVDadded 2022/04/24 12:0 a.m.13 views

GLPI Information Disclosure Vulnerability (CNVD-2022-44238)

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build a database to fully manage IT computers, monitors, servers, printers, network devices, phones, even toner cartridges...

7.8CVSS3.3AI score0.0036EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2022/04/21 5:15 p.m.53 views

CVE-2022-24867

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. When you pass the config to the javascript, some entries are filtered out. The variable ldappass is not filtered and when you look at the source code of the...

7.8CVSS7.1AI score0.0036EPSS
Exploits0References3
OSV
OSVadded 2019/07/30 4:50 p.m.1 views

USN-4078-1 openldap vulnerabilities

It was discovered that OpenLDAP incorrectly handled rootDN delegation. A database administrator could use this issue to request authorization as an identity from another database, contrary to expectations. CVE-2019-13057 It was discovered that OpenLDAP incorrectly handled SASL authentication and...

7.5CVSS6.5AI score0.04191EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2011/03/10 8:44 p.m.1 views

openldap: rootpw not verified via slapd.conf when using the NDB backend

bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name DN, which allows remote attackers to bypass intended access restrictions via an arbitrary password...

6.8CVSS6AI score0.0728EPSS
Exploits0References4
Cvelist
Cvelistadded 2000/10/13 4:0 a.m.14 views

CVE-2000-0516

When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN Distinguished Name name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP server...

6.2AI score0.00397EPSS
Exploits0References3
CVE
CVEadded 2000/10/13 4:0 a.m.47 views

CVE-2000-0516

The CVE-2000-0516 entry concerns Shiva Access Manager 5.0.0, where configuration data stored in an LDAP directory includes the root DN and password written in cleartext to a file that is world-readable. This local-access vulnerability enables a local attacker to read sensitive credentials and com...

7.2CVSS6.6AI score0.00397EPSS
Exploits0References3Affected Software1
securityvulns
securityvulnsadded 2000/06/07 12:0 a.m.32 views

Shiva Access Manager 5.0.0 Plaintext LDAP root password.

In testing Intel's Shiva Access Manager RADIUS/Tacacs+ product, i recently came across an important security hole in the LDAP connectivity on the Solaris platform version of this product. When you configure the S.A.M. to store all of it's information in an LDAP directory, it asks that you give it...

0.2AI score
Exploits0
Rows per page
Query Builder