Количество 2
Количество 2
CVE-2018-18389
Due to incorrect access control in Neo4j Enterprise Database Server 3.4.x before 3.4.9, the setting of LDAP for authentication with STARTTLS, and System Account for authorization, allows an attacker to log into the server by sending any valid username with an arbitrary password.
GHSA-h5f5-rj4r-42f6
Incorrect access control in Neo4j Enterprise Database Server via LDAP authentication
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-18389 Due to incorrect access control in Neo4j Enterprise Database Server 3.4.x before 3.4.9, the setting of LDAP for authentication with STARTTLS, and System Account for authorization, allows an attacker to log into the server by sending any valid username with an arbitrary password. | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад |
| GHSA-h5f5-rj4r-42f6 Incorrect access control in Neo4j Enterprise Database Server via LDAP authentication | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад |
Уязвимостей на страницу