CVE-2026-10549

NONE

—CVSS v3

—CVSS v2

0.05% EPSS (exploit probability)

CWE-280CWE

Description

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE