CLSA-2025-1758645818 openldap: Fix of 14 CVEs

Rebase to 2.4.58 to fix the following vulnerabilities: - CVE-2020-12243: fix denial of service caused by LDAP search filters with nested boolean expressions - CVE-2020-36221: fix integer underflow in the Certificate Exact Assertion processing - CVE-2020-36223: fix slapd crash in the Values Return...

Siemens SIMATIC S7-1500 Release of Invalid Pointer or Reference (CVE-2020-36224)

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

CVE-2022-36224

XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery CSRF...

CVE-2021-36224

Western Digital My Cloud devices before OS5 have a nobody account with a blank password...

Photon OS 4.0: Openldap PHSA-2021-4.0-0008

An update of the openldap package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0008. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-36224

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically...

CVE-2024-36224

CVE-2024-36224 affects Adobe Experience Manager (AEM) 6.5.20 and earlier and is a DOM-based XSS vulnerability that can lead to arbitrary JavaScript execution in the victim’s browser, typically requiring user interaction. The NVD/NVD-provided metrics show CVSS v3.1 base score 5.4 (medium) with net...

BELL-CVE-2020-36224 CVE-2020-36224 does not affect BellSoft software

Bulletin has no description...

Western Digital My Cloud PR4100 < 5.02.104 Multiple Vulnerabilities (Jul 2021)

Western Digital My Cloud PR4100 devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2021-36224

creationtimestamp| type| source ---|---|--- 2023-02-06 16:22:53+00:00| seen| https://t.me/cibsecurity/57545...

CVE-2021-36224

Western Digital My Cloud devices before OS5 have a nobody account with a blank password...

CVE-2021-36224

CVE-2021-36224 affects Western Digital My Cloud devices prior to OS5, where a nobody account exists with a blank password. This enables unauthorized access over the network with no user interaction and no privileges required, leading to high confidentiality, integrity, and availability impact per...

CVE-2021-36224

Western Digital My Cloud devices before OS5 have a nobody account with a blank password...

CVE-2022-36224

creationtimestamp| type| source ---|---|--- 2022-08-19 20:17:38+00:00| seen| https://t.me/cibsecurity/48451...

CVE-2022-36224

XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery CSRF...

CVE-2022-36224

XunRuiCMS v4.5.6 is reported vulnerable to Cross-Site Request Forgery (CSRF). The CVE entry indicates the affected software (XunRuiCMS 4.5.6) and the CSRF issue, but does not provide technical details such as the exact vulnerable component, attack vector, or root cause in the Initial document. A ...

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2021-2004)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : openldap2 (SUSE-SU-2021:14700-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14700-1 advisory. - An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing,...

SUSE: Security Advisory (SUSE-SU-2021:14700-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2021-1906)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...