Lucene search
K

394 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.2 views

SUSE CVE-2020-12243

In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service daemon crash...

7.5CVSS7.5AI score0.04423EPSS
Exploits1References61
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.2 views

SUSE CVE-2020-36222

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service...

7.5CVSS8.9AI score0.77738EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.2 views

SUSE CVE-2020-36224

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service...

7.5CVSS8.9AI score0.043EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.4 views

SUSE CVE-2020-36223

A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial of service double free and out-of-bounds read...

7.5CVSS8.8AI score0.043EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.2 views

SUSE CVE-2020-36225

A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service...

7.5CVSS8.9AI score0.043EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.2 views

SUSE CVE-2020-36227

A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancelextop Cancel operation, resulting in denial of service...

7.5CVSS8.9AI score0.77738EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.5 views

SUSE CVE-2020-36229

A flaw was discovered in ldapX509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in adkeystring, resulting in denial of service...

7.5CVSS8.9AI score0.043EPSS
Exploits0References123
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.3 views

SUSE CVE-2020-36228

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service...

7.5CVSS9.2AI score0.83381EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:50 a.m.5 views

SUSE CVE-2020-36230

A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c bernextelement, resulting in denial of service...

7.5CVSS8.9AI score0.1229EPSS
Exploits0References122
SUSE CVE
SUSE CVE
added 2023/02/15 3:34 a.m.5 views

SUSE CVE-2022-0918

A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The...

7.5CVSS6.9AI score0.05914EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2022/12/13 4:9 p.m.6 views

389-ds-base: sending crafted message could result in DoS

A vulnerability was found in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection. No bind or other authentication is required. This...

7.5CVSS5.8AI score0.05914EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/09/23 12:0 a.m.33 views

EulerOS Virtualization 2.9.1 : openldap (EulerOS-SA-2022-2358)

According to the versions of the openldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend...

9.8CVSS8.2AI score0.69899EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.26 views

EulerOS 2.0 SP10 : openldap (EulerOS-SA-2022-2166)

According to the versions of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via ...

9.8CVSS8.3AI score0.69899EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2022/07/19 9:11 p.m.5 views

389-ds-base: sending crafted message could result in DoS

A vulnerability was found in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection. No bind or other authentication is required. This...

7.5CVSS5.8AI score0.05914EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/07/14 12:0 a.m.29 views

EulerOS Virtualization 2.10.1 : openldap (EulerOS-SA-2022-2116)

According to the versions of the openldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend...

9.8CVSS8.2AI score0.69899EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.71 views

EulerOS 2.0 SP9 : openldap (EulerOS-SA-2022-1975)

According to the versions of the openldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via ...

9.8CVSS8.3AI score0.69899EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/08 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2022-2005)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.69899EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/25 12:0 a.m.24 views

SUSE SLES15: libldap-2_4-2 / libldap-2_4-2-32bit / libldap-data / openldap2 / etc (SUSE-SU-2022:1832-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1832-1 advisory. Security: - CVE-2022-29155: Fixed SQL injection in back-sql bsc1199240. Bugfixes: - allow specification of max/min TLS version with TLS1.3...

9.8CVSS7.3AI score0.69899EPSS
Exploits1References6
OSV
OSV
added 2022/05/18 11:3 a.m.2 views

OESA-2022-1654 openldap security update

OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing directory services usually phone book style information, but other information is possible over the Internet, similar to the way DNS Domain...

9.8CVSS7.7AI score0.69899EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/05/17 12:0 a.m.41 views

SUSE SLES12 Security Update : openldap2 (SUSE-SU-2022:1685-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:1685-1 advisory. - CVE-2022-29155: Fixed SQL injection in back-sql bsc1199240. Tenable has extracted the preceding description block directly from the SUSE...

9.8CVSS7.4AI score0.69899EPSS
Exploits1References4
Rows per page
Query Builder