CVE-2026-33432

CRITICAL

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, Roxy-WI constructs an LDAP search filter by directly concatenating the user-supplied login username into the filter string without escaping LDAP special characters. An unauthenticated attacker can inject LDAP filter metacharacters into the username field to manipulate the search query, cause the directory to return an unintended user entry, and bypass authentication entirely — gaining access to the application without knowing any valid password. As of time of publication, no known patches are available.

Score CVSS v3.1

9.1

/ 10.0

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Informations

Publié: 20 avr. 2026
Mis à jour: 24 avr. 2026
Statut: Analyzed
Source: security-advisories@github.com

Produits affectés

roxy-wi roxy-wi

Versions : 8.2.8.2

Faiblesses (CWE)

CWE-287NVD-CWE-noinfo

Références (3)

https://github.com/roxy-wi/roxy-wi/blob/v8.2.8.2/app/modules/roxywi/auth.py
Product
https://github.com/roxy-wi/roxy-wi/security/advisories/GHSA-hv3x-4w38-r92m
ExploitVendor Advisory
https://github.com/roxy-wi/roxy-wi/security/advisories/GHSA-hv3x-4w38-r92m
ExploitVendor Advisory

CVEs similaires

Autres vulnérabilités de type CWE-287

Loading…

Surveillez vos produits

Recevez une alerte automatique à chaque nouvelle CVE affectant vos équipements.

Activer la surveillance