Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:41123
HistoryJul 06, 2023 - 2:33 a.m.

LDAP Injection

2023-07-0602:33:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
24
ldap injection
org.bouncycastle
x509ldapcertstorespi.

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

23.2%

org.bouncycastle is vulnerable to LDAP injection. The vulnerability exists because the engineGetCRLs function in X509LDAPCertStoreSpi.java does not properly validate the X.509 certificates, allowing an attacker to insert malicious certificate’s subject name with special characters such as CN=Subject*)(objectclass=. into an LDAP search filter without any escape mechanism.

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

23.2%