Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
389-ds-base 安全漏洞
Vulnerability Description
389-ds-base是一个高度可用、功能齐全、可靠且安全的 LDAP 服务器实现。它处理世界上许多最大的 LDAP 部署。 389-ds-base 存在安全漏洞,该漏洞源于LDAP 过滤器访问控制存在问题。攻击者可以通过查询利用该漏洞实现访问控制绕过。
CVSS Information
N/A
Vulnerability Type
N/A