VYPR
Medium severity5.5NVD Advisory· Published Jun 9, 2022· Updated Jun 17, 2026

CVE-2022-25807

CVE-2022-25807

Description

An issue was discovered in the IGEL Universal Management Suite (UMS) 6.07.100. A hardcoded DES key in the LDAPDesPWEncrypter class allows an attacker, who has discovered encrypted LDAP bind credentials, to decrypt those credentials using a static 8-byte DES key.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IGEL/Universal Management Suitedescription
  • IGEL/IGEL OSllm-fuzzy
    Range: =6.07.100

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.