org.openidentityplatform.opendj:opendj-server-legacy
Maven2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting org.openidentityplatform.opendj:opendj-server-legacypage 1 of 1
- CVE-2025-27497HIGHCVSS 8.7EG 8.7✓ Fixed in 4.9.32025-03-05
vulnerable: 4.4.10 ... 4.9.2 (31 versions)
OpenDJ is an LDAPv3 compliant directory service. OpenDJ prior to 4.9.3 contains a denial-of-service (DoS) vulnerability that causes the server to become unresponsive to all LDAP requests without crashing or restarting. This issue occurs wh…
- CVE-2026-46495CRITICALCVSS 0.0EG 0.0✓ Fixed in 5.1.12026-06-22
vulnerable: 4.10.0 ... 5.1.0 (41 versions)
OpenDJ Pre-Auth RCE via Java Deserialization in JMX RMI ## Summary **Description** A Deserialization of Untrusted Data (CWE-502) issue in OpenDJ's JMX RMI connector allows an unauthenticated remote attacker to deserialize arbitrary Java…
Check whether org.openidentityplatform.opendj:opendj-server-legacy is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.openidentityplatform.opendj:opendj-server-legacy CVEs against the assets you own.
Start Free Scan →