Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
LDAP Connector: When startTLS is used then LDAP connector ignores the wrong password
Vulnerability Description
When the LDAP connector is started with StartTLS configured, unauthenticated access is granted. This issue affects: all versions of the LDAP connector prior to 1.5.20.9. The LDAP connector is bundled with Identity Management (IDM) and Remote Connector Server (RCS)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
ForgeRock LDAP connector 安全漏洞
Vulnerability Description
ForgeRock LDAP connector是美国ForgeRock公司的一个连接器。使您能够将同步服务与 LDAP v3 服务器集成。 ForgeRock LDAP connector 1.5.20.9之前版本存在安全漏洞,该漏洞源于当LDAP连接器在配置了StartTLS的情况下启动时,会允许未经认证的访问。
CVSS Information
N/A
Vulnerability Type
N/A