CVE-2026-4256

Summary

Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection.

This issue affects PassGate: through 30042026.

Affected Software

VendorProductVersion RangeStatus
PEAKUP Technology Inc.PassGate0 <= 30042026affected

Weaknesses

  • CWE-90: CWE-90 Improper neutralization of special elements used in an LDAP query ('LDAP injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References