CVE-2021-23335
CVE-2021-23335 affects the npm package is-user-valid (Node.js). The vulnerability is an LDAP Injection in the authentication logic, enabling potential authentication bypass or information exposure. The IBM bulletin confirms the CVE is acknowledged across IBM Cloud Pak for Data components (no expl...