mod_ldap vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the mod_ldap package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Improper Encoding or Escaping of Output	*
M Improper Input Validation	*
L HTTP Response Splitting	*
M Improper Input Validation	*
M HTTP Response Splitting	*
M Insufficient Verification of Data Authenticity	*
M Allocation of Resources Without Limits or Throttling	*
L Integer Overflow or Wraparound	*
M HTTP Request Smuggling	*
M Integer Overflow or Wraparound	*
H HTTP Request Smuggling	<0:2.4.6-97.el7_9.5
H Resource Exhaustion	<0:2.4.6-97.el7_9.4
H Server-Side Request Forgery (SSRF)	<0:2.4.6-97.el7_9.1
H Out-of-bounds Write	<0:2.4.6-97.el7_9.4
M Out-of-bounds Read	*
H NULL Pointer Dereference	<0:2.4.6-97.el7_9.4
M NULL Pointer Dereference	*
M Improper Input Validation	<0:2.4.6-95.el7
M Insufficient Session Expiration	<0:2.4.6-93.el7
M Open Redirect	<0:2.4.6-95.el7
M Improper Authentication	<0:2.4.6-31.el7_1.1
M Encoding Error	<0:2.4.6-31.el7_1.1
M Missing Initialization of a Variable	<0:2.4.6-95.el7
M Open Redirect	<0:2.4.6-95.el7
M Out-of-bounds Read	<0:2.4.6-95.el7
M Out-of-bounds Read	<0:2.4.6-93.el7
M Out-of-bounds Write	<0:2.4.6-95.el7
M Out-of-bounds Write	<0:2.4.6-93.el7
H Out-of-Bounds	<0:2.4.6-97.el7_9.4
L Access Restriction Bypass	*