Univention Univention Corporate Server — known CVE vulnerabilities
Every CVE whose affected-product data names Univention Univention Corporate Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-38994 — CVSS 7.9 (high): The 'check_univention_joinstatus' prometheus monitoring script (and other scripts) in UCS 5.0-5 revealed the LDAP plaintext password of the…
CVE-2019-1010283 — CVSS 7.5 (high): Univention Corporate Server univention-directory-notifier 12.0.1-3 and earlier is affected by: CWE-213: Intentional Information Exposure…