cvedb.io
CVE-2015-5246
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2017-10-06T15:29:00.437 · Last modified 2026-06-17T00:28:44.973

Summary

The LDAP Authentication functionality in Foreman might allow remote attackers with knowledge of old passwords to gain access via vectors involving the password lifetime period in Active Directory.

Affected products

theforeman — foreman

Does this affect you?

Add your gear to cvedb and we'll alert you only when theforeman ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.