MEDIUM
yamcs
CVE published 2026-06-10
CVE-2026-42568
CVE-2026-42568 is a MEDIUM severity vulnerability in Yamcs, a mission control framework. An LDAP injection vulnerability exists in `org.yamcs.security.LdapAuthModule` when constructing search filters. The username parameter is inserted directly into the LDAP filter without proper RFC 4515 escaping. This vulnerability was patched in versions 5.13.0 and 5.12.7.