Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2022-24669

Disclosure Date: October 20, 2022 (last updated December 22, 2024)
It may be possible to gain some details of the deployment through a well-crafted attack. This may allow that data to be used to probe internal network services.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-24670

Disclosure Date: October 20, 2022 (last updated December 22, 2024)
An attacker can use the unrestricted LDAP queries to determine configuration entries
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-4201

Disclosure Date: December 07, 2021 (last updated October 07, 2023)
Missing access control in ForgeRock Access Management 7.1.0 and earlier versions on all platforms allows remote unauthenticated attackers to hijack sessions, including potentially admin-level sessions. This issue affects: ForgeRock Access Management 7.1 versions prior to 7.1.1; 6.5 versions prior to 6.5.4; all previous versions.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0