2 matches found
CVE-2023-1656
CVE-2023-1656 affects ForgeRock OpenIDM and the Java Remote Connector Server (RCS) LDAP Connector on Windows, MacOS, and Linux. The root cause is cleartext transmission of LDAP BIND credentials before TLS, leading to potential exposure of credentials for OpenIDM and RCS versions 1.5.20.9–1.5.20.1...
CVE-2022-0143
CVE-2022-0143 affects ForgeRock LDAP Connector (bundled with Identity Management and Remote Connector Server). The flaw occurs when StartTLS is configured, allowing unauthenticated access in all versions prior to 1.5.20.9. Impact is described as unauthenticated access with potential confidentiali...