Lucene search

[email protected]CVE-2022-47581

HistoryDec 21, 2022 - 5:15 p.m.

CVE-2022-47581

2022-12-2117:15:10

[email protected]

web.nvd.nist.gov

cve-2022-47581

isode m-vault

ldap

crash

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

37.0%

JSON

Isode M-Vault 16.0v0 through 17.x before 17.0v24 can crash upon an LDAP v1 bind request.

Affected configurations

NVD

Node

isodem-vaultRange16.0v0–17.0v3

CPENameOperatorVersion
isode:m-vaultisode m-vaultle17.0v3

CPE	Name	Operator	Version
isode:m-vault	isode m-vault	le	17.0v3

References

www.isode.com/support/security/advisory/m-vault-denial-of-service-21-12-2022.html

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

37.0%

JSON

Related for CVE-2022-47581

cvelist1 prion1 nvd1