EUVD-2026-23968CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
2DescriptionNVD
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, Roxy-WI constructs an LDAP search filter by directly concatenating the user-supplied login username into the filter string without escaping LDAP special characters. An unauthenticated attacker can inject LDAP filter metacharacters into the username field to manipulate the search query, cause the directory to return an unintended user entry, and bypass authentication entirely - gaining access to the application without knowing any valid password. As of time of publication, no known patches are available.
AnalysisAI
LDAP injection in Roxy-WI web management interface (all versions through 8.2.8.2) allows complete authentication bypass when LDAP authentication is enabled. Unauthenticated remote attackers can inject LDAP filter metacharacters into the username field to manipulate directory queries and access the application without valid credentials. …
Sign in for full analysis, threat intelligence, and remediation guidance.
RemediationAI
Within 24 hours: Disable LDAP authentication on all Roxy-WI instances and switch to alternative authentication mechanisms (local accounts, RADIUS, or SAML if supported); restrict network access to Roxy-WI management interfaces via firewall rules to trusted administrative subnets only. Within 7 days: Conduct access logs audit on all Roxy-WI instances for suspicious authentication patterns, particularly failed LDAP queries with special characters (*, (, ), &, |); document all current administrative users and their access history. …
Sign in for detailed remediation steps.
Share
External POC / Exploit Code
Leaving vuln.today