Lucene search
PRIOn knowledge basePRION:CVE-2021-43350HistoryNov 11, 2021 - 1:15 p.m.
Design/Logic Flaw
2021-11-1113:15:00
PRIOn knowledge base
www.prio-n.com
3
An unauthenticated Apache Traffic Control Traffic Ops user can send a request with a specially-crafted username to the POST /login endpoint of any API version to inject unsanitized content into the LDAP filter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| traffic_control | eq | 6.0.1 rc0 | |
| traffic_control | ge | 6.0.0 | |
| traffic_control | lt | 6.0.1 | |
| traffic_control | eq | 5.1.4 rc0 | |
| traffic_control | ge | 5.1.0 | |
| traffic_control | lt | 5.1.4 |
Related
osv
osv
Apache Traffic Control Traffic Ops Vulnerable to LDAP Injection
2022-05-24 19:20:26
Apache Traffic Control Traffic Ops Vulnerable to LDAP Injection in github.com/apache/trafficcontrol
2024-06-10 16:38:54
CVE-2021-43350
2021-11-11 13:15:07
cve
cve
CVE-2021-43350
2021-11-11 13:15:07
veracode
veracode
LDAP Injection
2021-11-12 02:41:11
gitlab
gitlab
cvelist
cvelist
CVE-2021-43350 LDAP filter injection vulnerability in Traffic Ops
2021-11-11 13:00:15
cnvd
cnvd
Apache Traffic Control LDAP filter injection vulnerability
2021-11-13 00:00:00
nvd
nvd
CVE-2021-43350
2021-11-11 13:15:07
github
github
Apache Traffic Control Traffic Ops Vulnerable to LDAP Injection
2022-05-24 19:20:26