CVE-2014-9217

CVE-2014-9217

EPSS 2.3%

Graylog2 before 0.92 allows remote attackers to bypass LDAP authentication via crafted wildcards.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/oss-sec/2014/q4/1130 https://exchange.xforce.ibmcloud.com/vulnerabilities/99571 http://www.graylog2.org/news/post/0010-graylog2-v0-92