CVE-2023-25613

Summary

An LDAP Injection vulnerability exists in the LdapIdentityBackend of Apache Kerby before 2.0.3. 

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Kerby LDAP Backend0 < 2.0.3affected

Weaknesses

  • CWE-74: CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

ADP Enrichment

CVE Program Container

Additional References

References