K000140040: OpenLDAP slapd vulnerabilities CVE-2020-36230, CVE-2020-36229, CVE-2017-17740, CVE-2017-9287, and CVE-2017-14159

🗓️ 18 Jun 2024 18:22:39Reported by f5Type

f5🔗 my.f5.com👁 50 Views

OpenLDAP vulnerabilities in versions before 2.4.57. Denial of service risk with X.509 DN parsing and slapd crashes. Double free vulnerability

Reporter	Title	Published	Views	Family All 298
IBM Security Bulletins	Security Bulletin: Astronomer with IBM is vulnerable to several vulnerabilities	4 Sep 202522:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Access Manager Appliance is affected by an OpenLDAP vulnerability (CVE-2017-9287)	16 Jun 201822:06	–	ibm
IBM Security Bulletins	Security Bulletin: EDB PGAI Hybrid Management with IBM is affected by Multiple Vulnerabilities.	6 May 202615:18	–	ibm
IBM Security Bulletins	Security Bulletin: OpenLDAP publicly disclosed vulnerabilities affects MessageGateway (CCVE-2020-36230, CVE-2020-36229)	23 Feb 202117:18	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in OpenLDAP affects PowerKVM	18 Jun 201801:38	–	ibm
Tenable Nessus	Amazon Linux 2 : openldap (ALAS-2023-2033)	2 May 202300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : openldap (ALAS-2023-1741)	4 May 202300:00	–	nessus
Tenable Nessus	CentOS 7 : openldap (CESA-2017:1852)	25 Aug 201700:00	–	nessus
Tenable Nessus	Debian DLA-2544-1 : openldap security update	4 Feb 202100:00	–	nessus
Tenable Nessus	Debian DLA-972-1 : openldap security update	2 Jun 201700:00	–	nessus

18 Jun 2024 18:22Current

6.5Medium risk

Vulners AI Score6.5

CVSS 25

CVSS 3.17.5

EPSS0.2275