Vulnerability Details CVE-2014-9217
Graylog2 before 0.92 allows remote attackers to bypass LDAP authentication via crafted wildcards.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://seclists.org/oss-sec/2014/q4/1130
- http://www.graylog2.org/news/post/0010-graylog2-v0-92
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99571
- http://seclists.org/oss-sec/2014/q4/1130
- http://www.graylog2.org/news/post/0010-graylog2-v0-92
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99571
Products affected by CVE-2014-9217
-
cpe:2.3:a:torch_gmbh:graylog2:*