Description
LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database.
Published: 2026-06-02
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a LDAP filter injection flaw that allows an attacker who already holds valid LDAP credentials to subvert group membership verification. By crafting a specially‑formatted LDAP query, an attacker can make the database treat the user as a member of privileged groups, granting them unauthorized access to sensitive data. The weakness is mapped to CWE‑280, indicating a flaw in privilege‑management or access control logic. The direct impact is the potential acquisition of read or write privileges beyond those intended for the authenticated user, exposing confidential information or enabling further malicious activity within the database.

Affected Systems

Yandex Database instances from the Yandex vendor, specifically any release earlier than version 25.3.1.25. No other affected versions are listed, so upgrading to the 25.3.1.25 release or later is sufficient to remove the flaw.

Risk and Exploitability

The CVSS score of 5.3 indicates a medium severity risk. The EPSS score is not available, so while we cannot quantify current exploitation probability, the presence of LDAP injection and privilege escalation raises concern for environments that rely on LDAP for authentication. The vulnerability is not listed as a Known Exploited Vulnerability (KEV) by CISA, yet the attack vector requires an attacker to possess valid LDAP credentials and be able to communicate with the Yandex Database service remotely. If these conditions are met, the flaw can be exploited without needing local access or administrative privilege on the database host.

Generated by OpenCVE AI on June 2, 2026 at 11:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Yandex Database to version 25.3.1.25 or later to eliminate the LDAP filter injection flaw
  • Limit LDAP credential usage to the minimum privileges required for each role and disable any super‑user accounts that are not needed
  • Implement logging and auditing of group membership checks and database access to detect unauthorized privilege escalation attempts

Generated by OpenCVE AI on June 2, 2026 at 11:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Yandex
Yandex yandex Database
Vendors & Products Yandex
Yandex yandex Database

Tue, 02 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 02 Jun 2026 10:00:00 +0000

Type Values Removed Values Added
Description LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database.
Title Privilege escalation in Yandex Database
Weaknesses CWE-280
References
Metrics cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/AU:Y'}

Subscriptions

Yandex Yandex Database
cve-icon MITRE

Status: PUBLISHED

Assigner: yandex

Published:

Updated: 2026-06-02T13:30:02.360Z

Reserved: 2026-06-01T13:30:40.384Z

Link: CVE-2026-10549

cve-icon Vulnrichment

Updated: 2026-06-02T13:29:53.631Z

cve-icon NVD

Status : Deferred

Published: 2026-06-02T10:16:20.357

Modified: 2026-06-02T14:45:28.410

Link: CVE-2026-10549

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T20:51:46Z

Weaknesses