Lucene search
K

729 matches found

CVE
CVE
added 2026/06/11 5:54 p.m.23 views

CVE-2026-11774

CVE-2026-11774 affects the SASL I/O layer in 389-ds-base (389 Directory Server). A crafted SASL packet with a length prefix of 0xFFFFFFFC triggers an unsigned wraparound when sasl_io_start_packet() adds sizeof(uint32_t), bypassing nsslapd-maxsasliosize and causing a heap buffer overflow of up to ...

7.6CVSS6AI score0.0067EPSS
Exploits0References20
ATTACKERKB
ATTACKERKB
added 2026/06/11 5:54 p.m.5 views

CVE-2026-11774

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS6.2AI score0.0067EPSS
Exploits0References21
EUVD
EUVD
added 2026/06/11 5:54 p.m.11 views

EUVD-2026-36293

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS5.9AI score0.01038EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-11774

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packe...

7.6CVSS6.1AI score0.01038EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.18 views

PT-2026-48701

Name of the Vulnerable Software and Affected Versions 389 Directory Server 389-ds-base affected versions not specified Description An integer overflow exists in the SASL I/O layer within the sasl io start packet function. When a crafted SASL packet length prefix of 0xFFFFFFFC is processed, adding...

7.6CVSS6.2AI score0.0067EPSS
Exploits0References38
Fedora
Fedora
added 2026/06/05 4:10 a.m.25 views

[SECURITY] Fedora 43 Update: freeipa-4.13.1-7.fc43

IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...

9.8CVSS5.8AI score0.12797EPSS
Exploits9
Fedora
Fedora
added 2026/06/02 12:55 a.m.21 views

[SECURITY] Fedora 44 Update: freeipa-4.13.1-12.fc44

IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...

9.8CVSS5.8AI score0.12797EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.9 views

Fedora 44 : freeipa / samba (2026-7567819345)

The remote Fedora 44 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-7567819345 advisory. Update to Samba 4.24.3 - Security fix for CVE-2026-4480, CVE-2026-2340, CVE-2026-3012, CVE-2026-1933, CVE-2026-4408, and CVE-2026-3238 Tenable has...

9.8CVSS5.6AI score0.12797EPSS
Exploits9References7
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in freeipa

There is a cross-site request forgery vulnerability in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions on behalf of the user, resulting in a loss of confidentiality and system integrity...

6.5CVSS6.5AI score0.0057EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in freeipa

A flaw was discovered in all IPA versions ranging from 4.x.x to 4.8.0. When sending a very long password = 1,000,000 characters to the server, the password hashing process could exhaust memory and CPU resources, resulting in a denial of service and making the website unresponsive. The greatest...

5.4CVSS6.5AI score0.01047EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in freeipa

A vulnerability was discovered in FreeIPA regarding the initial implementation of MS-SFU by MIT Kerberos. This implementation lacked a condition for granting the “forwardable” flag on S4U2Self tickets. Fixing this issue required adding a special case for the checkallowedtodelegate function: If th...

8.8CVSS7AI score0.00667EPSS
Exploits0References2
OSV
OSV
added 2026/05/03 9:56 a.m.18 views

OESA-2026-2170 sssd security update

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

5.5CVSS5.8AI score0.00141EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/22 1:18 p.m.11 views

Security Bulletin: Vulnerability in FreeIPA affects IBM Netezza Appliance

Summary The FreeIPA package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-7493 Vulnerability Details CVEID:CVE-2025-7493 DESCRIPTION: A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is...

9.1CVSS5.7AI score0.01827EPSS
Exploits1Affected Software1
OSV
OSV
added 2026/03/18 6:1 a.m.5 views

RLSA-2025:17129 Important: idm:DL1 security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

9.1CVSS5.8AI score0.00523EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/03/18 6:1 a.m.7 views

idm:DL1 security update

An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec,...

9.1CVSS7.3AI score0.00523EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

TencentOS Server 3: idm:DL1 (TSSA-2025:1008)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:1008 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

9.1CVSS5.8AI score0.00523EPSS
Exploits0References2
Chainguard
Chainguard
added 2026/02/02 1:17 p.m.6 views

CVE-2019-14826 vulnerabilities

Vulnerabilities for packages: freeipa...

5.6CVSS5.2AI score0.00336EPSS
Exploits0
Chainguard
Chainguard
added 2026/02/02 1:17 p.m.5 views

GHSA-HWMM-P4J4-8398 vulnerabilities

Vulnerabilities for packages: freeipa...

5.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : ipa-4.11.0-15.el9_4.ML.1 (AXSA:2024-8146:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8146:07 advisory. freeipa: delegation rules allow a proxy service to impersonate any user to access another target service CVE-2024-2698 freeipa: user can obtain a ha...

8.8CVSS5.7AI score0.02053EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : idm:DL1 (AXSA:2024-8493:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8493:01 advisory. CVE-2024-2698 freeipa: delegation rules allow a proxy service to impersonate any user to access another target service CVE-2024-3183 freeipa: user c...

8.8CVSS5.7AI score0.02053EPSS
Exploits1References3
Rows per page
Query Builder