CVE Vulnerabilities

CVE-2023-44038

Published: Apr 03, 2024 | Modified: Apr 16, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

In VeridiumID before 3.5.0, the identity provider page allows an unauthenticated attacker to discover information about registered users via an LDAP injection attack.

Affected Software

Name Vendor Start Version End Version
Veridiumad Veridiumid * 3.5.0 (excluding)

References