Critical severity9.6NVD Advisory· Published Oct 1, 2021· Updated May 18, 2026
CVE-2021-3825
CVE-2021-3825
Description
On 2.1.15 version and below of Lider module in LiderAhenk software is leaking it's configurations via an unsecured API. An attacker with an access to the configurations API could get valid LDAP credentials.
Affected products
1- TUBITAK/Liderv5Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- pentest.blog/liderahenk-0day-all-your-pardus-clients-belongs-to-me/nvdExploitThird Party Advisory
- www.usom.gov.tr/bildirim/tr-21-0795nvdThird Party Advisory
- siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-21-0795nvd
News mentions
0No linked articles in our index yet.