CVE-2023-44038
EUVD-2023-4839703.04.2024, 17:15
In VeridiumID before 3.5.0, the identity provider page allows an unauthenticated attacker to discover information about registered users via an LDAP injection attack.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| veridiumid | veridiumad | 𝑥 < 3.5.0 |
𝑥
= Vulnerable software versions
References