Security Advisory

CVE-2021-35472

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-27 05:32:26

Last updated 2024-08-04 00:40:46

Assigner mitre

State PUBLISHED

Description

An issue was discovered in LemonLDAP::NG before 2.0.12. Session cache corruption can lead to authorization bypass or spoofing. By running a loop that makes many authentication attempts, an attacker might alternately be authenticated as one of two different users.

← Browse all CVEs View on cve.org ↗