Description
Unspecified methods in the RACF Connector component before 1.1.1.0 in ForgeRock OpenIDM and OpenICF improperly call the SearchControls constructor with returnObjFlag set to true, which allows remote attackers to execute arbitrary code via a crafted serialized Java object, aka LDAP entry poisoning.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://backstage.forgerock.com/knowledge/kb/article/a96963547
Scores
CVSS v3
8.1
EPSS
0.0228
EPSS Percentile
81.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (1)
forgerock/racf_connector
< 1.1.0.0
Published
Feb 03, 2017
Tracked Since
Feb 18, 2026