CVE-2014-9217 — Graylog2 before 0.92 allows remote attackers to bypass LDAP authentication via c... | CVE Daily

Medium CVSS 5.0

Overview

Graylog2 before 0.92 allows remote attackers to bypass LDAP authentication via crafted wildcards.

CWE: CWE-287 Published: 2014-12-08T11:59:10.360

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.0 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Recommended tools

Tags