CVE-2026-13696

HAVELSAN · Liman MYS

HAVELSAN Liman MYS is susceptible to an LDAP injection vulnerability, allowing authenticated attackers to manipulate LDAP queries.

Executive summary

A high-severity LDAP injection vulnerability in HAVELSAN Liman MYS allows authenticated attackers to potentially compromise system integrity and confidentiality.

Vulnerability

This flaw involves improper neutralization of special elements used in LDAP queries. The vulnerability requires the attacker to have an authenticated session to execute malicious query injections against the backend directory service.

Business impact

Successful exploitation of this vulnerability could allow an attacker to bypass directory-based authentication, access sensitive user information, or modify directory data. Given the CVSS score of 8.8, this poses a significant risk to organizational identity management and system security, potentially leading to widespread unauthorized access.

Remediation

Immediate Action: Upgrade to version release.master.1107 or the latest available release as specified by the vendor advisory to resolve the injection flaw.

Proactive Monitoring: Monitor LDAP query logs for abnormal syntax, unexpected characters, or unauthorized search patterns originating from authenticated service accounts.

Compensating Controls: Implement strict input validation on all web application fields that interface with LDAP services and utilize parameterized queries where possible.

Exploitation status

Public Exploit Available: false

Analyst recommendation

This vulnerability represents a critical risk to the integrity of the Liman MYS environment. Organizations should prioritize patching to version release.master.1107 immediately to prevent potential directory service exploitation and subsequent lateral movement.