CVE-2021-30651

A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt