Moole Vulnerability Database

Find real vulnerabilities before they ship

High

CVE-2026-44052

Netatalk 2.1.0 through 4.4.2 inserts LDAP simple-bind passwords into log output in cleartext, which allows an attacker with access to the log files to obtain LDAP credentials.

VectorNETWORK

PublishedMay 21, 2026, 08:16

Published By33c584b5-0579-4c06-b2a0-8d8329fcab9c

Base Score

Score7.5

Affected Versions

No affected versions found.

References

https://netatalk.io/security/CVE-2026-44052

Weakness Type

CWE-532

CVSS Metrics

Base Score

7.5

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Base SeverityHigh

Version

3.1

Attack Vector (AV)

NETWORK