CNNVD-202601-3932 Information

CNNVD ID

CNNVD-202601-3932

Related CVE

CVE-2026-24130

• CNNVD Published: 2026-01-22

Description (Chinese)

Moonraker是Eric Callahan个人开发者的一个Web接口服务器。 Moonraker 0.9.3及之前版本存在安全漏洞，该漏洞源于LDAP搜索过滤器注入，可能导致暴力破解方法发现服务器上的LDAP条目。

Description (English)

Moonraker is a Web interface server for Eric Callahan’s personal developer. There is a security gap in Moonraker 0.9.3 and earlier versions, which stems from the injection of the LDAP search filter, which could lead to violent decomposition methods to discover LDAP entries on the server.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/Arksine/moonraker/commit/74c5d8e44c4a4abbfbb06fb991e7ebb9ac947f42 https://github.com/Arksine/moonraker/security/advisories/GHSA-3jqf-v4mv-747g https://access.redhat.com/security/cve/cve-2026-24130

Patch

https://github.com/Arksine/moonraker/releases