Lucene search
K

1058 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.9 views

AlmaLinux 8 : 389-ds:1.4 (ALSA-2026:26459)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:26459 advisory. 389-ds-base: 389-ds-base: unbounded LDAP controls count in getldapmessagecontrolsext causes CPU and heap amplification remote DoS CVE-2026-9064 Tenable has...

7.5CVSS5.9AI score0.00815EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.6 views

Fedora 44 : 389-ds-base (2026-6d00814a85)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-6d00814a85 advisory. Resolves: CVE-2026-9064 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

7.5CVSS5.9AI score0.00815EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.6 views

RockyLinux 10 : 389-ds-base (RLSA-2026:26456)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:26456 advisory. 389-ds-base: 389-ds-base: unbounded LDAP controls count in getldapmessagecontrolsext causes CPU and heap amplification remote DoS CVE-2026-9064 Bug Fixes and...

7.5CVSS5.9AI score0.00815EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.11 views

Astra Linux – Vulnerability in the 389-DS-base

A flaw was discovered in 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can access a NULL pointer dereferencing using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service. This CVE is associated with an incomple...

6.5CVSS6.7AI score0.01238EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in the 389-DS-base

A flaw has been discovered in 389-ds-base versions 1.4.x.x prior to 1.4.1.3. When executed in verbose mode, the dscreate and dsconf commands may display sensitive information, such as the Directory Manager password. An attacker who can view the screen or record the terminal’s standard error outpu...

4.6CVSS6.1AI score0.00396EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in the 389-DS-base

A heap overflow flaw was discovered in 389-ds-base. This issue causes a denial of service when writing a value larger than 256 characters in logentryattr...

5.5CVSS6.1AI score0.00304EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in the 389-DS-base

A flaw was discovered in 389-ds-base. If an asterisk is imported as password hashes, either accidentally or maliciously, then any password will successfully match during authentication, instead of being inactive. This flaw allows an attacker to successfully authenticate as a user whose password h...

6.5CVSS6.6AI score0.01349EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in the 389-DS-base

The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying userPassword using malformed input...

5.7CVSS6.6AI score0.00423EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in slapi-nis

A flaw was discovered in slapi-nis in versions prior to 0.56.7. A NULL pointer dereferencing during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The greatest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.01701EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in the 389-DS-base

A flaw was discovered in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, resulting in a denial of service...

6.5CVSS6.5AI score0.00923EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.1 views

Astra Linux – Vulnerability in the 389-DS-base

A flaw was discovered in 389-ds-base. A specially crafted LDAP query may potentially cause a failure on the directory server, resulting in a denial of service...

7.5CVSS6.9AI score0.01256EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.8 views

RHEL 9 : redhat-ds:12 (RHSA-2026:26639)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:26639 advisory. Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol LDAP...

7.5CVSS6AI score0.00815EPSS
Exploits0References4
OSV
OSV
added 2026/06/17 10:8 a.m.5 views

RHSA-2026:26464 Red Hat Security Advisory: 389-ds-base security update

Bulletin has no description...

7.5CVSS4.9AI score0.00815EPSS
Exploits0References7
OSV
OSV
added 2026/06/17 10:8 a.m.5 views

RHSA-2026:26465 Red Hat Security Advisory: 389-ds-base security update

Bulletin has no description...

7.5CVSS4.8AI score0.00815EPSS
Exploits0References7
OSV
OSV
added 2026/06/17 10:8 a.m.8 views

RHSA-2026:26457 Red Hat Security Advisory: 389-ds-base security update

Bulletin has no description...

7.5CVSS4.8AI score0.00815EPSS
Exploits0References7
OSV
OSV
added 2026/06/17 10:8 a.m.5 views

RHSA-2026:26456 Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update

Bulletin has no description...

7.5CVSS4.8AI score0.00815EPSS
Exploits0References7
OSV
OSV
added 2026/06/17 10:8 a.m.5 views

RHSA-2026:26453 Red Hat Security Advisory: 389-ds-base security update

Bulletin has no description...

7.5CVSS4.8AI score0.00815EPSS
Exploits0References7
OSV
OSV
added 2026/06/17 10:8 a.m.6 views

RHSA-2026:26452 Red Hat Security Advisory: 389-ds-base security update

Bulletin has no description...

7.5CVSS4.8AI score0.00815EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/06/17 1:51 a.m.5 views

Important: Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update

An update for 389-ds-base is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS5.4AI score0.00815EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/17 12:44 a.m.6 views

389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS)

A flaw was found in 389-ds-base. The getldapmessagecontrolsext function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated attacker can send a specially crafted LDAP request containing hundreds of thousands of minimal controls...

7.5CVSS5.2AI score0.00815EPSS
Exploits0References4
Rows per page
Query Builder