CVE-2026-44930: CWE-90 Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') in Apache Software Foundation Apache CXF
An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache CXF may allow an attacker to retrieve arbitrary certificates from the repository. Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, which fix this issue.
AI Analysis
Technical Summary
This vulnerability involves improper neutralization of special elements used in LDAP queries (CWE-90) in Apache CXF's XKMS server LDAP Certificate repository. An attacker could exploit this LDAP injection flaw to retrieve arbitrary certificates from the repository, potentially exposing sensitive certificate data. The issue affects Apache CXF versions 4.2.0, 4.0.0, and earlier. The vendor has released fixed versions 4.2.1, 4.1.6, and 3.6.11 to remediate the vulnerability.
Potential Impact
Successful exploitation allows an attacker to retrieve arbitrary certificates from the LDAP Certificate repository, which may lead to unauthorized disclosure of certificate information. There is no indication of further impact such as code execution or privilege escalation in the provided data.
Mitigation Recommendations
Users should upgrade Apache CXF to versions 4.2.1, 4.1.6, or 3.6.11, which contain fixes for this LDAP injection vulnerability. Patch status is confirmed by the vendor advisory recommending these versions. No additional mitigation steps are specified.
CVE-2026-44930: CWE-90 Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') in Apache Software Foundation Apache CXF
Description
An LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache CXF may allow an attacker to retrieve arbitrary certificates from the repository. Users are recommended to upgrade to versions 4.2.1, 4.1.6 or 3.6.11, which fix this issue.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves improper neutralization of special elements used in LDAP queries (CWE-90) in Apache CXF's XKMS server LDAP Certificate repository. An attacker could exploit this LDAP injection flaw to retrieve arbitrary certificates from the repository, potentially exposing sensitive certificate data. The issue affects Apache CXF versions 4.2.0, 4.0.0, and earlier. The vendor has released fixed versions 4.2.1, 4.1.6, and 3.6.11 to remediate the vulnerability.
Potential Impact
Successful exploitation allows an attacker to retrieve arbitrary certificates from the LDAP Certificate repository, which may lead to unauthorized disclosure of certificate information. There is no indication of further impact such as code execution or privilege escalation in the provided data.
Mitigation Recommendations
Users should upgrade Apache CXF to versions 4.2.1, 4.1.6, or 3.6.11, which contain fixes for this LDAP injection vulnerability. Patch status is confirmed by the vendor advisory recommending these versions. No additional mitigation steps are specified.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- apache
- Date Reserved
- 2026-05-08T10:39:48.240Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a104fc0e1370fbb48f4899b
Added to database: 5/22/2026, 12:44:48 PM
Last enriched: 5/22/2026, 12:59:42 PM
Last updated: 5/23/2026, 7:53:20 PM
Views: 22
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.