Описание
The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when using Active Directory for authentication, allows remote attackers to bypass authentication via unspecified vectors.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat CloudForms Tools 1 | rubygem-ldap_fluff | Affected | ||
| Red Hat Subscription Asset Manager | rubygem-ldap_fluff | Affected |
Показывать по
10
Дополнительная информация
Статус:
Important
https://bugzilla.redhat.com/show_bug.cgi?id=882136rubygem-ldap_fluff: CloudForms authentication bypass when handling anonymous LDAP bind
EPSS
Процентиль: 69%
0.00586
Низкий
5 Medium
CVSS2
Связанные уязвимости
nvd
почти 13 лет назад
The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when using Active Directory for authentication, allows remote attackers to bypass authentication via unspecified vectors.
EPSS
Процентиль: 69%
0.00586
Низкий
5 Medium
CVSS2