CVE-2022-0143

Name of the Vulnerable Software and Affected Versions LDAP connector versions prior to 1.5.20.9

Description The issue allows unauthenticated access when the LDAP connector is started with StartTLS configured. This problem is related to the LDAP connector, which is bundled with Identity Management (IDM) and Remote Connector Server (RCS).

Recommendations For versions prior to 1.5.20.9, update to version 1.5.20.9 or later to resolve the issue. As a temporary workaround, consider disabling the StartTLS configuration in the LDAP connector until a patch is available. Restrict access to the LDAP connector to minimize the risk of exploitation.