CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

Tenable Nessus•added 2019/12/18 12:0 a.m.•33 views

EulerOS 2.0 SP3 : openldap (EulerOS-SA-2019-2640)

According to the version of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security...

7.5CVSS6.7AI score0.04191EPSS

Exploits0References2

Tenable Nessus•added 2019/12/10 12:0 a.m.•31 views

EulerOS 2.0 SP2 : openldap (EulerOS-SA-2019-2358)

According to the versions of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security...

7.5CVSS6.4AI score0.04191EPSS

Exploits0References3

Tenable Nessus•added 2019/11/12 12:0 a.m.•31 views

EulerOS 2.0 SP8 : openldap (EulerOS-SA-2019-2112)

7.5CVSS6.7AI score0.04191EPSS

Exploits0References2

Tenable Nessus•added 2019/11/08 12:0 a.m.•25 views

EulerOS 2.0 SP5 : openldap (EulerOS-SA-2019-2178)

7.5CVSS6.7AI score0.04191EPSS

Exploits0References2

OPENSUSE Linux•added 2019/09/24 12:0 a.m.•100 views

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2176-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.0 An update that solves three...

7.5CVSS7.6AI score0.06138EPSS

Exploits0References5

OPENSUSE Linux•added 2019/09/23 12:0 a.m.•117 views

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2019:2157-1 Rating: moderate References: 1073313 1111388 1114845 1143194 1143273 Cross-References: CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Affected Products: openSUSE Leap 15.1 An update that solves three...

7.5CVSS7.6AI score0.06138EPSS

Exploits0References5

Tenable Nessus•added 2019/09/19 12:0 a.m.•29 views

SUSE SLED15 / SLES15 Security Update : openldap2 (SUSE-SU-2019:2395-1)

This update for openldap2 fixes the following issues : Security issue fixed : CVE-2019-13565: Fixed an authentication bypass when using SASL authentication and session encryption bsc1143194. CVE-2019-13057: Fixed an issue with delegated database admin privileges bsc1143273. CVE-2017-17740: When...

7.5CVSS6.8AI score0.06138EPSS

Exploits0References12

OSV•added 2019/09/18 6:31 a.m.•8 views

SUSE-SU-2019:2395-1 Security update for openldap2

This update for openldap2 fixes the following issues: Security issue fixed: - CVE-2019-13565: Fixed an authentication bypass when using SASL authentication and session encryption bsc1143194. - CVE-2019-13057: Fixed an issue with delegated database admin privileges bsc1143273. - CVE-2017-17740: Wh...

7.5CVSS6.5AI score0.06138EPSS

Exploits0References9

Tenable Nessus•added 2019/08/20 12:0 a.m.•39 views

Debian DLA-1891-1 : openldap security update

Several security vulnerabilities were discovered in openldap, a server and tools to provide a standalone directory service. CVE-2019-13057 When the server administrator delegates rootDN database admin privileges for certain databases but wants to maintain isolation e.g., for multi-tenant...

7.5CVSS6.5AI score0.04191EPSS

Exploits0References4

Debian•added 2019/08/18 10:47 p.m.•85 views

[SECURITY] [DLA 1891-1] openldap security update

Package : openldap Version : 2.4.40+dfsg-1+deb8u5 CVE ID : CVE-2019-13057 CVE-2019-13565 Debian Bug : 932997 932998 Several security vulnerabilities were discovered in openldap, a server and tools to provide a standalone directory service. CVE-2019-13057 When the server administrator delegates...

7.5CVSS7.7AI score0.04191EPSS

Exploits0

Tenable Nessus•added 2019/08/12 12:0 a.m.•33 views

Ubuntu 16.04 LTS / 18.04 LTS : OpenLDAP vulnerabilities (USN-4078-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4078-1 advisory. It was discovered that OpenLDAP incorrectly handled rootDN delegation. A database administrator could use this issue to request authorization...

7.5CVSS6.5AI score0.04191EPSS

Exploits0References3

RedhatCVE•added 2019/08/08 11:52 a.m.•22 views

CVE-2019-13565

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs...

7.5CVSS2.7AI score0.04191EPSS

Exploits0References5

OSV•added 2019/07/30 4:50 p.m.•2 views

USN-4078-1 openldap vulnerabilities

It was discovered that OpenLDAP incorrectly handled rootDN delegation. A database administrator could use this issue to request authorization as an identity from another database, contrary to expectations. CVE-2019-13057 It was discovered that OpenLDAP incorrectly handled SASL authentication and...

7.5CVSS6.5AI score0.04191EPSS

Exploits0References3

NVD•added 2019/07/26 1:15 p.m.•15 views

CVE-2019-13565

7.5CVSS7.5AI score0.04191EPSS

Exploits0References16

Prion•added 2019/07/26 1:15 p.m.•17 views

Authorization

5CVSS7.4AI score0.04191EPSS

Exploits0References16Affected Software9

Debian CVE•added 2019/07/26 12:30 p.m.•23 views

CVE-2019-13565

7.5CVSS6.6AI score0.04191EPSS

Exploits0

CVE•added 2019/07/26 12:30 p.m.•551 views

CVE-2019-13565

CVE-2019-13565 affects OpenLDAP 2.x before 2.4.48. The issue arises when using SASL authentication with session encryption and relying on SASL security layers in slapd ACLs, allowing access that would normally be denied via a simple bind for identities covered by the ACLs. After the first SASL bi...

7.5CVSS7.4AI score0.04191EPSS

Exploits0References16Affected Software1