CVE-2026-1966 | YugabyteDB Anywhere prior 2024.2.6.0/2025.1.1.0/2025.2.0.0 LDAP Configuration insufficiently protected credentials

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability was found in YugabyteDB Anywhere. It has been classified as problematic. This affects an unknown part of the component LDAP Configuration Handler. The manipulation leads to insufficiently protected credentials.

This vulnerability is traded as CVE-2026-1966. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-1966 | YugabyteDB Anywhere prior 2024.2.6.0/2025.1.1.0/2025.2.0.0 LDAP Configuration insufficiently protected credentials

Post correlati

CVE-2024-45823 | Rockwell Automation FactoryTalk Batch View 2.01.00 improper authentication

CVE-2024-12793 | PbootCMS up to 5.2.3 IndexController.php tag path traversal

CVE-2024-37147 | glpi-project glpi up to 10.0.15 access control (GHSA-f2cg-fc85-ffmh)

CVE-2024-3469 | GP Premium Plugin up to 2.4.0 on WordPress cross site scripting