Ldap Connector
Approved changes feed: RSS · Atom
cpe:2.3:a:forgerock:ldap_connector:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Forgerock (62f6869f-1355-5abb-ba20-0a0692140c41) |
|---|---|
| Product | Ldap Connector (5b5af979-682b-51d0-8edb-e3d3731253b7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-1656 |
vulnerable | 2026-06-03 14:48:56.031927 |
When the LDAP connector is started with StartTLS configured, LDAP BIND credentials are transmitted insecurely, prior to establishing the TLS connection.
HIGH (7.5)
Cleartext Transmission of Sensitive Information vulnerability in ForgeRock Inc. OpenIDM and Java Remote Connector Server (RCS) LDAP Connector on Windows, MacOS, Linux allows Remote Services with Stolen Credentials.This issue affects OpenIDM and Java Remote Connector Server (RCS): from 1.5.20.9 through 1.5.20.13.
Published: 2023-03-29T19:55:13.974Z
Updated: 2025-04-14T17:04:02.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-0143 |
vulnerable | 2026-06-03 14:45:55.505688 |
LDAP Connector: When startTLS is used then LDAP connector ignores the wrong password
CRITICAL (9.3)
When the LDAP connector is started with StartTLS configured, unauthenticated access is granted. This issue affects: all versions of the LDAP connector prior to 1.5.20.9. The LDAP connector is bundled with Identity Management (IDM) and Remote Connector Server (RCS)
Published: 2022-09-19T21:15:51.349Z
Updated: 2025-05-29T15:29:12.450Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.