WatchGuard Firebox LDAP Injection

www.watchguard.com

WatchGuard Firebox LDAP Injection

www.watchguard.com

digicatM to

blueteamsecEnglish · 14 days ago

WatchGuard Firebox LDAP Injection | WatchGuard Technologies

www.watchguard.com

An LDAP Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from a connected LDAP authentication server through an exposed authentication or management web interface. This vulnerability may also allow a remote attacker to authenticate as an LDAP user with a partial identifier if they additionally have that user's valid passphrase.

You must log in or # to comment.

Chat

blueteamsec

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

45 users / day
166 users / week
343 users / month
971 users / 6 months
227 local subscribers
635 subscribers
2.48K Posts
204 Comments
Modlog

mods:
digicat