Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2016-4984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - /usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the TLS certificate, which allows local users to obtain the TLS...

4.7CVSS5.5AI score0.0015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 7 : openldap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openldap: ACL restrictions bypass due to saslssf value being set permanently CVE-2019-13565 -...

7.5CVSS6.9AI score0.05015EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.24 views

RHEL 6 : openldap-servers (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - openldap-servers: /usr/libexec/openldap/generate-server-cert.sh create world readable password file CVE-2016-4984...

5AI score0.0015EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.23 views

RHEL 5 : openldap-servers (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - openldap-servers: /usr/libexec/openldap/generate-server-cert.sh create world readable password file CVE-2016-4984...

5AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2017/07/17 1:18 p.m.29 views

CVE-2016-4984

/usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the TLS certificate, which allows local users to obtain the TLS certificate by leveraging a race condition between the creation of the certificate, and the chmod to protect it...

4.7CVSS5.7AI score0.0015EPSS
Exploits0References1
CVE
CVE
added 2017/07/14 8:0 p.m.60 views

CVE-2016-4984

CVE-2016-4984 affects openldap-servers; the issue is a race condition in /usr/libexec/openldap/generate-server-cert.sh that leads to weak permissions on the TLS certificate. This allows a local authenticated user to obtain the TLS certificate by exploiting the creation/chmod race. The IBM X-Force...

4.7CVSS4.4AI score0.0015EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2016/06/14 3:48 a.m.20 views

CVE-2016-4984

/usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the TLS certificate, which allows local users to obtain the TLS certificate by leveraging a race condition between the creation of the certificate, and the chmod to protect it...

4.7CVSS2.7AI score0.0015EPSS
Exploits0References1
Rows per page
Query Builder