Unauthenticated Access Vulnerability in LDAP Connector with StartTLS Configuration

Unauthenticated Access Vulnerability in LDAP Connector with StartTLS Configuration

CVE-2022-0143 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

When the LDAP connector is started with StartTLS configured, unauthenticated access is granted. This issue affects: all versions of the LDAP connector prior to 1.5.20.9. The LDAP connector is bundled with Identity Management (IDM) and Remote Connector Server (RCS)

Learn more about our Cis Benchmark Audit For Server Software.