CVE-2018-1000134
CVE-2018-1000134 affects the UnboundID LDAP SDK for Java. The issue is an Incorrect Access Control in the SimpleBindRequest.process function that does not check for an empty password in synchronous mode, potentially allowing authentication bypass by a valid username with an empty password. The vu...