PT-2026-56800 · Passgate · Passgate
Published
2026-07-09
·
Updated
2026-07-09
·
CVE-2026-4256
CVSS v3.1
8.2
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
PassGate versions prior to 30042026
Description
PassGate contains an LDAP injection flaw resulting from the improper neutralization of special elements used in an LDAP query. LDAP injection is a technique where an attacker inserts malicious code into a Lightweight Directory Access Protocol (LDAP) query to manipulate the results or bypass authentication.
Recommendations
Update PassGate to a version newer than 30042026.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Passgate