Web Vulnerability Report

Vulnerability Index
ID EDB-ID-50480
CVSS 3.0 7.5
Cloudbric Score
Cloudbric Detection Yes
Vulnerability Type LDAP Injection
Published Date 2021-11-03
Updated Date 2022-01-21
Vendor 13.00
Description ForgeRock OpenAM before 13.5.1 allows LDAP injection via the Webfinger protocol. For example, an unauthenticated attacker can perform character-by-character retrieval of password hashes, or retrieve a session token or a private key.
URL Link
Threat Index Table
ID Description Vulnerability Type
Cloudbric Score
Updated Date Detection

To receive weekly updates on new vulnerabilities added to Threat Index

Subscribe Now