๐Ÿ” CVE Alert

CVE-2026-47840

HIGH 7.5

LDAP StartTLS unconditionally disables hostname verification

CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
0th

A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certificate from any trusted CA, then harvest the LDAP bind password and every end-user password sent during simple-bind authentication, and return forged group memberships that grant themselves admin scopes. This affects every deployment that authenticates users against LDAP over StartTLS. Affected versions: UAA versions prior to v78.13.0; Cf-deployment versions prior to v56.2.0.

Vendor cloudfoundry foundation
Product uaa
Published Jul 9, 2026
Last Updated Jul 9, 2026
Stay Ahead of the Next One

Get instant alerts for cloudfoundry foundation uaa

Be the first to know when new high vulnerabilities affecting cloudfoundry foundation uaa are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
High
Availability
None

Affected Versions

CloudFoundry Foundation / UAA
0 < 78.13.0
CloudFoundry Foundation / Cf-deployment
0 < 56.2.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
cloudfoundry.org: https://www.cloudfoundry.org/blog/cve-2026-47840-ldap-starttls-unconditionally-disables-hostname-verification/