What is GHSA-5g5h-vp5m-chrx?

GHSA-5g5h-vp5m-chrx is a security advisory published by GitHub Security Advisories with High severity. On 2.1.15 version and below of Lider module in LiderAhenk software is leaking it's configurations...

Which CVE IDs does GHSA-5g5h-vp5m-chrx cover?

GHSA-5g5h-vp5m-chrx covers the following CVE IDs: CVE-2021-3825. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-5g5h-vp5m-chrx?

GHSA-5g5h-vp5m-chrx has a CVSS v3 base score of 9.6, published by GitHub Security Advisories.

GHSA-5g5h-vp5m-chrxHighCVSS 9.6

On 2.1.15 version and below of Lider module in LiderAhenk software is leaking it's configurations...

Vendor

GitHub Security Advisories

Published

May 24, 2022

Last Modified

May 18, 2026

🔗 CVE IDs covered (1)

CVE-2021-3825 →

📋 Description

On 2.1.15 version and below of Lider module in LiderAhenk software is leaking it's configurations via an unsecured API. An attacker with an access to the configurations API could get valid LDAP credentials.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2021-3825
https://www.usom.gov.tr/bildirim/tr-21-0795
https://pentest.blog/liderahenk-0day-all-your-pardus-clients-belongs-to-me
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-21-0795
https://github.com/advisories/GHSA-5g5h-vp5m-chrx