Apache Directory Ldap Api — known CVE vulnerabilities
Every CVE whose affected-product data names Apache Directory Ldap Api, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2018-1337 — CVSS 9.8 (critical): In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the…
CVE-2026-35563 — CVSS 8.5 (high): It was identified that the LDAP client implementation in version 2.1.7 does not verify if the server certificate matches the intended LDAP…
CVE-2015-3250 — CVSS 7.5 (high): Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors.