CVE-2016-6497 in LDAP APIinfo

Summary

main/java/org/apache/directory/groovyldap/LDAP.java in the Groovy LDAP API allows attackers to conduct LDAP entry poisoning attacks by leveraging setting returnObjFlag to true for all search methods.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

08/01/2016

Disclosure

01/18/2017

Moderation

VulDB entry created

Entries

VDB-95505 (1)

CPE

ready

CWE

CWE-254 (Confirmed)

CVSS

7.4

EPSS

0.03008

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6497
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6497
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6497/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!