CVE-2024-37393 | SecurEnvoy MFA prior 9.4.514 Desktop Service /secserver ldap injection

Posted by Angelo Barbosa | Jun 10, 2024 | CVE

A vulnerability has been found in SecurEnvoy MFA and classified as critical. Affected by this vulnerability is an unknown functionality of the file /secserver of the component Desktop Service. The manipulation leads to ldap injection.

This vulnerability is known as CVE-2024-37393. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37393 | SecurEnvoy MFA prior 9.4.514 Desktop Service /secserver ldap injection

Related Posts

CVE-2024-44920 | SeaCMS 12.9 admin_collect_news.php siteurl cross site scripting

CVE-2023-31302 | Sesami Cash Point & Transport Optimizer 6.3.8.6 Teller cross site scripting (usd-2022-0056)

CVE-2024-28176 | jose JWE resource consumption

CVE-2024-6220 | 简数采集器 Keydatas Plugin up to 2.5.2 on WordPress unrestricted upload