漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
When the LDAP connector is started with StartTLS configured, LDAP BIND credentials are transmitted insecurely, prior to establishing the TLS connection.
Vulnerability Description
Cleartext Transmission of Sensitive Information vulnerability in ForgeRock Inc. OpenIDM and Java Remote Connector Server (RCS) LDAP Connector on Windows, MacOS, Linux allows Remote Services with Stolen Credentials.This issue affects OpenIDM and Java Remote Connector Server (RCS): from 1.5.20.9 through 1.5.20.13.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
OpenIDM 安全漏洞
Vulnerability Description
ForgeRock OpenIDM是美国ForgeRock公司的一个身份管理系统。 OpenIDM 1.5.20.9版本至1.5.20.13版本存在安全漏洞,该漏洞源于存在敏感信息明文传输漏洞。
CVSS Information
N/A
Vulnerability Type
N/A