← volver
CVE-2012-6426

CVE-2012-6426

EPSS 1.6%
LemonLDAP::NG before 1.2.3 does not use the signature-verification capability of the Lasso library, which allows remote attackers to bypass intended access-control restrictions via crafted SAML data.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://jira.ow2.org/browse/LEMONLDAP-570http://openwall.com/lists/oss-security/2012/12/19/6http://openwall.com/lists/oss-security/2012/12/20/6