Lucene search

PRIOn knowledge basePRION:CVE-2019-10171

HistoryAug 02, 2019 - 2:15 p.m.

Code injection

2019-08-0214:15:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.05 Low

EPSS

Percentile

92.9%

JSON

It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was incorrectly applied in RHEL 7.5. An attacker would still be able to provoke excessive CPU consumption leading to a denial of service.

CPENameOperatorVersion
389_directory_serverge1.4.0.0
389_directory_serverlt1.4.0.17
enterprise_linux_server_euseq7.5

Name	Operator	Version
389_directory_server	ge	1.4.0.0
389_directory_server	lt	1.4.0.17
enterprise_linux_server_eus	eq	7.5

References

bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10171