NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-10549

Summary	LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database.
Publication Date	June 2, 2026, 7:16 p.m.
Registration Date	June 3, 2026, 4:17 a.m.
Last Update	June 2, 2026, 11:45 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://ydb.tech/docs/ru/security-changelog	browser-security@yandex-team.ru

Common Vulnerabilities List