Lucene search
RedhatCVELIST:CVE-2022-2850HistoryOct 14, 2022 - 12:00 a.m.
CVE-2022-2850
2022-10-1400:00:00
redhat
www.cve.org
A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service. This CVE is assigned against an incomplete fix of CVE-2021-3514.
CNA Affected
[
{
"vendor": "n/a",
"product": "389-ds-base",
"versions": [
{
"version": "389-ds-base-2.0.x+",
"status": "affected"
}
]
}
]Related
osv
osv
CVE-2022-2850
2022-10-14 18:15:14
Moderate: 389-ds:1.4 security and bug fix update
2021-06-29 14:00:08
Moderate: 389-ds:1.4 security update
2022-10-25 07:33:40
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0413)
2022-11-09 00:00:00
openSUSE: Security Advisory for 389-ds (openSUSE-SU-2021:0868-1)
2021-06-15 00:00:00
openSUSE: Security Advisory for 389-ds (SUSE-SU-2022:3286-1)
2022-09-17 00:00:00
nessus
nessus
Oracle Linux 8 : 389-ds:1.4 (ELSA-2022-7133)
2022-10-27 00:00:00
Oracle Linux 7 : 389-ds-base (ELSA-2022-7087)
2022-10-25 00:00:00
Amazon Linux 2 : 389-ds-base (ALAS-2022-1879)
2022-12-07 00:00:00
ubuntucve
ubuntucve
CVE-2022-2850
2022-10-14 00:00:00
CVE-2021-3514
2021-05-28 00:00:00
debiancve
debiancve
CVE-2022-2850
2022-10-14 18:15:14
CVE-2021-3514
2021-05-28 15:15:09
mageia
mageia
Updated 389-ds-base packages fix security vulnerability
2022-11-08 22:44:28
prion
prion
Null pointer dereference
2022-10-14 18:15:00
Null pointer dereference
2021-05-28 15:15:00
cve
cve
CVE-2022-2850
2022-10-14 18:15:14
CVE-2021-3514
2021-05-28 15:15:09
redhatcve
redhatcve
CVE-2022-2850
2022-08-16 17:25:03
CVE-2021-3514
2021-04-27 08:17:20
nvd
nvd
CVE-2022-2850
2022-10-14 18:15:14
CVE-2021-3514
2021-05-28 15:15:09
suse
suse
Security update for 389-ds (moderate)
2021-06-14 00:00:00
Security update for 389-ds (moderate)
2022-09-16 00:00:00
Security update for 389-ds (moderate)
2022-09-05 00:00:00
rocky
rocky
389-ds:1.4 security and bug fix update
2021-06-29 14:00:08
389-ds:1.4 security update
2022-10-25 07:33:40
389-ds-base security, bug fix, and enhancement update
2022-11-15 06:17:19
almalinux
almalinux
Moderate: 389-ds:1.4 security and bug fix update
2021-06-29 14:00:08
Moderate: 389-ds:1.4 security update
2022-10-25 00:00:00
Moderate: 389-ds-base security, bug fix, and enhancement update
2022-11-15 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-05-20 23:18:19
Denial Of Service (DoS)
2022-11-10 00:44:40
oraclelinux
oraclelinux
389-ds:1.4 security and bug fix update
2021-07-02 00:00:00
389-ds:1.4 security update
2022-10-27 00:00:00
389-ds-base security and bug fix update
2022-10-25 00:00:00
redhat
redhat
(RHSA-2021:2796) Moderate: 389-ds:1.4 security update
2021-07-20 13:21:05
(RHSA-2021:2595) Moderate: 389-ds:1.4 security and bug fix update
2021-06-29 14:00:08
(RHSA-2022:7133) Moderate: 389-ds:1.4 security update
2022-10-25 07:33:40
cvelist
cvelist
CVE-2021-3514
2021-05-28 00:00:00
centos
centos
389 security update
2022-10-26 14:16:15
amazon
amazon
Medium: 389-ds-base
2022-12-01 20:31:00
ubuntu
ubuntu
389 Directory Server vulnerabilities
2022-07-18 00:00:00
archlinux
archlinux
[ASA-202107-72] 389-ds-base: multiple issues
2021-07-27 00:00:00
debian
debian
[SECURITY] [DLA 3399-1] 389-ds-base security update
2023-04-24 05:25:45