CVE-2026-11748: CWE-90 in LY Corporation Central Dogma
A vulnerability has been identified in centraldogma-server-auth-shiro versions prior to 0.84.0, where the SearchFirstActiveDirectoryRealm substitutes the login username into an LDAP search filter without neutralizing LDAP filter metacharacters, allowing an unauthenticated attacker to manipulate the filter to cause authentication confusion and enumerate the directory structure.
AI Analysis
Technical Summary
The vulnerability CVE-2026-11748 affects centraldogma-server-auth-shiro versions prior to 0.84.0. It is caused by improper sanitization of LDAP filter input in the SearchFirstActiveDirectoryRealm, where the login username is directly substituted into the LDAP search filter without escaping LDAP metacharacters. This can be exploited by unauthenticated attackers to manipulate the LDAP query, leading to authentication confusion and directory enumeration. The CVSS 4.0 base score is 6.9, indicating a medium severity with network attack vector, low attack complexity, no privileges or user interaction required, and limited confidentiality and integrity impact.
Potential Impact
An unauthenticated attacker can exploit this vulnerability to manipulate LDAP search filters, potentially causing authentication confusion and enabling enumeration of the directory structure. This may lead to unauthorized information disclosure about the directory and could complicate authentication processes, but does not directly allow privilege escalation or code execution based on the available data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is indicated and no vendor advisory content is provided, users should monitor LY Corporation's advisories for updates. Until a fix is available, consider restricting access to the authentication service and applying LDAP input validation or filtering as a temporary mitigation if feasible.
CVE-2026-11748: CWE-90 in LY Corporation Central Dogma
Description
A vulnerability has been identified in centraldogma-server-auth-shiro versions prior to 0.84.0, where the SearchFirstActiveDirectoryRealm substitutes the login username into an LDAP search filter without neutralizing LDAP filter metacharacters, allowing an unauthenticated attacker to manipulate the filter to cause authentication confusion and enumerate the directory structure.
CVSS v4.0
Score 6.9medium
Affected software
pkg:github/line/centraldogma-server-auth-shiroRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-11748 affects centraldogma-server-auth-shiro versions prior to 0.84.0. It is caused by improper sanitization of LDAP filter input in the SearchFirstActiveDirectoryRealm, where the login username is directly substituted into the LDAP search filter without escaping LDAP metacharacters. This can be exploited by unauthenticated attackers to manipulate the LDAP query, leading to authentication confusion and directory enumeration. The CVSS 4.0 base score is 6.9, indicating a medium severity with network attack vector, low attack complexity, no privileges or user interaction required, and limited confidentiality and integrity impact.
Potential Impact
An unauthenticated attacker can exploit this vulnerability to manipulate LDAP search filters, potentially causing authentication confusion and enabling enumeration of the directory structure. This may lead to unauthorized information disclosure about the directory and could complicate authentication processes, but does not directly allow privilege escalation or code execution based on the available data.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is indicated and no vendor advisory content is provided, users should monitor LY Corporation's advisories for updates. Until a fix is available, consider restricting access to the authentication service and applying LDAP input validation or filtering as a temporary mitigation if feasible.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- LY-Corporation
- Date Reserved
- 2026-06-09T06:50:03.618Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a394305eed863c81eeb06ec
Added to database: 06/22/2026, 14:13:25 UTC
Last enriched: 06/22/2026, 14:13:41 UTC
Last updated: 06/22/2026, 19:23:30 UTC
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.