CVE-2024-52946 | LemonLDAP::NG up to 2.20.0 Session Refresh improper authentication (Issue 3255)

Posted by Angelo Barbosa | Nov 18, 2024 | CVE

A vulnerability was found in LemonLDAP::NG up to 2.20.0 and classified as critical. This issue affects some unknown processing of the component Session Refresh. The manipulation leads to improper authentication.

The identification of this vulnerability is CVE-2024-52946. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52946 | LemonLDAP::NG up to 2.20.0 Session Refresh improper authentication (Issue 3255)

Related Posts

CVE-2023-48753 | 10up Restricted Site Access Plugin up to 7.4.1 on WordPress authentication spoofing

CVE-2024-10389 | Google Safearchive Archive Extraction uncontrolled search path

CVE-2024-20914 | Oracle ZFS Storage Appliance Kit 8.8 Core information disclosure

CVE-2024-31258 | Micro.company Form to Chat App Plugin up to 1.1.6 on WordPress cross site scripting