Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-14624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when...

7.5CVSS7.1AI score0.02451EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2018-0404)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02451EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2019:1207-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.03948EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2018-1365)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.0265EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2018-1357)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.02451EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/07/02 12:0 a.m.36 views

SUSE SLED15 / SLES15 Security Update : 389-ds (SUSE-SU-2019:1207-2)

This update for 389-ds fixes the following issues : The following security vulnerabilities were addressed : CVE-2018-10850: Fixed a race condition on reference counter that would lead to a denial of service using persistent search bsc1096368 CVE-2017-15134: Fixed a remote denial of service via...

8.1CVSS6.9AI score0.03948EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2019/05/16 12:0 a.m.25 views

openSUSE: Security Advisory for 389-ds (openSUSE-SU-2019:1397-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.2AI score0.03948EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/05/16 12:0 a.m.30 views

openSUSE Security Update : 389-ds (openSUSE-2019-1397)

This update for 389-ds fixes the following issues : The following security vulnerabilities were addressed : - CVE-2018-10850: Fixed a race condition on reference counter that would lead to a denial of service using persistent search bsc1096368 - CVE-2017-15134: Fixed a remote denial of service vi...

8.1CVSS7AI score0.03948EPSS
Exploits1References9
Check Point Advisories
Check Point Advisories
added 2019/01/14 12:0 a.m.4 views

Red Hat 389 Directory Server vslapd_log_emergency_error Denial of Service (CVE-2018-14624)

A denial-of-service vulnerability has been reported in 389 Directory Server. The vulnerability is due to improper use of the lock controlling the error log when the log file is reopened. A remote, unauthenticated attacker could send LDAP requests to a very large DN to trigger the vulnerability...

5CVSS2.2AI score0.02451EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/11/06 12:0 a.m.40 views

EulerOS 2.0 SP2 : 389-ds-base (EulerOS-SA-2018-1357)

According to the versions of the 389-ds-base packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - race condition on reference counter leads to DoS using persistent search CVE-2018-10850 - Server crash through modify command with large DN...

7.5CVSS6.8AI score0.02451EPSS
Exploits1References3
Mageia
Mageia
added 2018/10/19 6:0 p.m.48 views

Updated 389-ds-base packages fix security vulnerabilities

Updated 389-ds-base package fixes security vulnerabilities: a race condition on reference counter leads to DoS using persistent search CVE-2018-10850 ldapsearch with server side sort allows users to cause a crash CVE-2018-10935 a server crash through the modify command with large DN CVE-2018-1462...

7.5CVSS4.2AI score0.02451EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2018/10/03 12:0 a.m.41 views

CentOS Update for 389-ds-base CESA-2018:2757 centos7

Check the version of 389-ds-base SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882954";...

7.5CVSS6.8AI score0.0265EPSS
Exploits1References2
Cent OS
Cent OS
added 2018/09/28 4:44 p.m.570 views

389 security update

CentOS Errata and Security Advisory CESA-2018:2757 An update for 389-ds-base is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.7AI score0.0265EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.43 views

RHEL 7 : 389-ds-base (RHSA-2018:2757)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2757 advisory. 389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP...

7.5CVSS6.9AI score0.0265EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.33 views

Oracle Linux 7 : 389-ds-base (ELSA-2018-2757)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-2757 advisory. 1.3.7.5-28 - Bump version to 1.3.7.5-28 - Resolves: Bug 1628676 - 389-ds-base: race condition on reference counter leads to DoS using persistent search...

7.5CVSS6.9AI score0.0265EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.32 views

Scientific Linux Security Update : 389-ds-base on SL7.x x86_64 (20180925)

Security Fixes : - 389-ds-base: race condition on reference counter leads to DoS using persistent search CVE-2018-10850 - 389-ds-base: ldapsearch with server side sort allows users to cause a crash CVE-2018-10935 - 389-ds-base: Server crash through modify command with large DN CVE-2018-14624 -...

7.5CVSS6.8AI score0.0265EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2018/09/25 7:18 p.m.203 views

Moderate: Red Hat Security Advisory: 389-ds-base security and bug fix update

An update for 389-ds-base is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.5CVSS6.8AI score0.0265EPSS
Exploits1References9
OSV
OSV
added 2018/09/06 2:29 p.m.9 views

CVE-2018-14624

A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in logerroremergency. An attacker could send a flood of modifications to a very large DN, which would cause slapd t...

7.5CVSS6.4AI score0.02451EPSS
Exploits1References5
CVE
CVE
added 2018/09/06 1:0 p.m.194 views

CVE-2018-14624

389-ds-base (LDAP directory server) vulnerable to CVE-2018-14624 in versions 1.3.7.10, 1.3.8.8 and 1.4.0.16 due to improper use of the lock for the error log during log__error_emergency() reopen. An attacker could flood a very large DN, causing slapd to crash (DoS). Connected advisories reference...

7.5CVSS6.3AI score0.02451EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder