PT-2026-56800 · Passgate · Passgate

Published

2026-07-09

·

Updated

2026-07-09

·

CVE-2026-4256

CVSS v3.1

8.2

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Name of the Vulnerable Software and Affected Versions PassGate versions prior to 30042026
Description PassGate contains an LDAP injection flaw resulting from the improper neutralization of special elements used in an LDAP query. LDAP injection is a technique where an attacker inserts malicious code into a Lightweight Directory Access Protocol (LDAP) query to manipulate the results or bypass authentication.
Recommendations Update PassGate to a version newer than 30042026.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-4256

Affected Products

Passgate