LemonLDAP::NG -2.0.3 has Incorrect Access Control.
References
Link | Resource |
---|---|
https://seclists.org/bugtraq/2019/May/38 | Mailing List Third Party Advisory |
https://projects.ow2.org/view/lemonldap-ng/lemonldap-ng-2-0-4-is-out/ | Release Notes Third Party Advisory |
https://projects.ow2.org/view/lemonldap-ng/lemonldap-ng-1-9-19-is-out/ | Release Notes Third Party Advisory |
https://lemonldap-ng.org/download | Product Vendor Advisory |
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/issues/1744 | Third Party Advisory |
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/issues/1743 | Third Party Advisory |
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/issues/1742 | Exploit Third Party Advisory |
https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/commits/master | Third Party Advisory |
Information
Published : 2019-05-22 09:29
Updated : 2020-08-24 10:37
NVD link : CVE-2019-12046
Mitre link : CVE-2019-12046
JSON object : View
CWE
CWE-522
Insufficiently Protected Credentials
Products Affected
debian
- debian_linux
lemonldap-ng
- lemonldap\