| Title | Apache OFBiz before 24.09.06 Improper Neutralization of Special Elements used in an LDAP Quer |
|---|
| Description | A remote unauthenticated attacker can bypass authentication in Apache OFBiz through LDAP injection in the LdapAuthenticationServices component. User-supplied username
input is directly concatenated into the LDAP Distinguished Name (DN) template without proper escaping of special characters (RFC 2253).
Affected Component: framework/common/src/main/java/org/apache/ofbiz/common/login/LdapAuthenticationServices.java (line 76)
Vulnerable Code: dn = dnTemplate.replace("%u", username);
The wildcard character * or crafted LDAP special characters (e.g., *)(uid=*)) may match arbitrary user DNs or manipulate the LDAP query structure, allowing authentication
bypass and unauthorized access.
CVSS v3.1: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H (8.1)
Fixed in Apache OFBiz 24.09.06.
|
|---|
| Source | ⚠️ https://www.cve.org/CVERecord?id=CVE-2026-41919 |
|---|
| User | zhaokf (UID 97524) |
|---|
| Submission | 05/30/2026 12:37 (26 days ago) |
|---|
| Moderation | 06/24/2026 15:12 (25 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 364607 [Apache OFBiz up to 24.09.05 ldap injection] |
|---|
| Points | 0 |
|---|