VYPR
Unrated severityNVD Advisory· Published Jan 29, 2025· Updated Feb 10, 2025

CVE-2024-54852

CVE-2024-54852

Description

When LDAP connection is activated in Teedy versions between 1.9 to 1.12, the username field of the login form is vulnerable to LDAP injection. Due to improper sanitization of user input, an unauthenticated attacker is then able to perform various malicious actions, such as creating arbitrary accounts and spraying passwords.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Teedy/Teedydescription
  • Sismics/Teedyllm-fuzzy
    Range: >=1.9 <=1.12

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.