Skip to main content

Directory Ldap Api

2 CVEs product

Monthly

CVE-2018-1337 Maven CRITICAL PATCH Act Now

In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Information Disclosure Directory Ldap Api
NVD
CVSS 3.0
9.8
EPSS
5.2%
CVE-2015-3250 Maven HIGH PATCH This Week

Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Apache Information Disclosure Directory Ldap Api
NVD
CVSS 3.0
7.5
EPSS
2.0%
EPSS 5% CVSS 9.8
CRITICAL PATCH Act Now

In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Information Disclosure Directory Ldap Api
NVD
EPSS 2% CVSS 7.5
HIGH PATCH This Week

Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Apache Information Disclosure Directory Ldap Api
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy