CVE-2023-0476 in Tenable.sc
الملخص
بحسب MITRE • 26/01/2023
A LDAP injection vulnerability exists in Tenable.sc due to improper validation of user-supplied input before returning it to users. An authenticated attacker could generate data in Active Directory using the application account through blind LDAP injection.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.