What is GHSA-pg32-686q-qh6x?

GHSA-pg32-686q-qh6x is a security advisory published by GitHub Security Advisories with Critical severity. An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache...

Which CVE IDs does GHSA-pg32-686q-qh6x cover?

GHSA-pg32-686q-qh6x covers the following CVE IDs: CVE-2026-44930. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-pg32-686q-qh6x?

GHSA-pg32-686q-qh6x has a CVSS v3 base score of 9.8, published by GitHub Security Advisories.

GHSA-pg32-686q-qh6xCriticalCVSS 9.8

An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache...

Vendor

GitHub Security Advisories

Published

May 26, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (1)

CVE-2026-44930 →

📋 Description

An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache CXF may allow an attacker to retrieve arbitrary certificates from the repository. Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, which fix this issue.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-44930
https://lists.apache.org/thread/c1zqxppo1m5z3kbdhjn5p991zk09ynkh
http://www.openwall.com/lists/oss-security/2026/05/22/9
https://github.com/advisories/GHSA-pg32-686q-qh6x