Lucene search
K

40 matches found

OSV
OSV
added 2026/04/23 8:31 p.m.8 views

CLSA-2025-1758645818 openldap: Fix of 14 CVEs

Rebase to 2.4.58 to fix the following vulnerabilities: - CVE-2020-12243: fix denial of service caused by LDAP search filters with nested boolean expressions - CVE-2020-36221: fix integer underflow in the Certificate Exact Assertion processing - CVE-2020-36223: fix slapd crash in the Values Return...

7.5CVSS7.1AI score0.84224EPSS
Exploits1References1
Rosalinux
Rosalinux
added 2024/07/01 2:4 p.m.60 views

Advisory ROSA-SA-2024-2439

Software: openldap 2.4.46 OS: ROSA Virtualization 2.1 packageevrstring: openldap-2.4.46 CVE-ID: CVE-2020-25709 BDU-ID: 2022-00231 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the slapd server implementation of the OpenLDAP LDAP protocol is related to a flaw in the use of the assert function...

9.8CVSS7.5AI score0.69899EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.31 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : openldap Multiple Vulnerabilities (NS-SA-2023-0016)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has openldap packages installed that are affected by multiple vulnerabilities: - A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd server, to trigger ...

7.5CVSS7.3AI score0.02858EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2023/02/21 6:48 p.m.40 views

K56241216: OpenLDAP vulnerabilities CVE-2020-25709 and CVE-2020-25710

Security Advisory Description CVE-2020-25709 A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability. CVE-2020-25710...

7.5CVSS7.7AI score0.02858EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/11/15 12:0 a.m.37 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openldap Multiple Vulnerabilities (NS-SA-2022-0077)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openldap packages installed that are affected by multiple vulnerabilities: - A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd server, to trigger ...

7.5CVSS7.3AI score0.02858EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.64 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20201105.2286)

The version of AHV installed on the remote host is prior to 20201105.2286. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-20201105.2286 advisory. - In Expat aka libexpat before 2.4.5, there is an integer overflow in storeRawNames. CVE-2022-25315 - In Expat ak...

9.8CVSS7.1AI score0.70561EPSS
Exploits5References18
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/07 11:20 a.m.37 views

Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in openldap. (CVE-2020-25709, CVE-2020-25710)

Summary IBM QRadar Network Security has addressed vulnerabilities in openldap. The issue could lead to Denial of service. Vulnerability Details CVEID: CVE-2020-25709 DESCRIPTION: OpenLDAP is vulnerable to a denial of service, caused by an assertion failure in certificateListValidate function in...

7.5CVSS1.1AI score0.02858EPSS
Exploits0Affected Software1
ICS
ICS
added 2022/04/26 12:0 a.m.40 views

Hitachi Energy System Data Manager

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: System Data Manager – SDM600 Vulnerabilities: Integer Overflow or Wraparound, Reachable Assertion, Type Confusion, Uncontrolled Recursion, Observable Discrepancy 2. RISK...

7.5CVSS7.6AI score0.50732EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/04/06 12:0 a.m.84 views

Amazon Linux 2 : openldap (ALAS-2022-1770)

The version of openldap installed on the remote host is prior to 2.4.44-23. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1770 advisory. A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP'...

7.5CVSS7.3AI score0.02858EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/02/26 12:0 a.m.19 views

CentOS: Security Advisory for openldap (CESA-2022:0621)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.8AI score0.02858EPSS
Exploits0References2
Cent OS
Cent OS
added 2022/02/25 3:36 p.m.106 views

openldap security update

CentOS Errata and Security Advisory CESA-2022:0621 An update for openldap is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.1AI score0.02858EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/02/25 12:0 a.m.160 views

CentOS 7 : openldap (RHSA-2022:0621)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0621 advisory. - A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd server, to trigger an...

7.5CVSS7.4AI score0.02858EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/24 12:0 a.m.24 views

Scientific Linux Security Update : openldap on SL7.x i686/x86_64 (2022:0621)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:0621-1 advisory. - openldap: assertion failure in Certificate List syntax validation CVE-2020-25709 - openldap: assertion failure in CSN normalization with invali...

7.5CVSS7.5AI score0.02858EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2022/02/23 12:0 a.m.477 views

openldap security update

2.4.44-25 - Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation 2040539 - Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input 2040538...

7.5CVSS1.3AI score0.02858EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/23 12:0 a.m.88 views

Oracle Linux 7 : openldap (ELSA-2022-0621)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0621 advisory. - Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation 2040539 Tenable has extracted the preceding description block...

7.5CVSS7.6AI score0.02858EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/02/22 5:11 p.m.95 views

Moderate: Red Hat Security Advisory: openldap security update

An update for openldap is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7.1AI score0.02858EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.64 views

RHEL 7 : openldap (RHSA-2022:0621)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0621 advisory. OpenLDAP is an open-source suite of Lightweight Directory Access Protocol LDAP applications and development tools. LDAP is a set of protocol...

7.5CVSS7.6AI score0.02858EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2022-1087)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.02858EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.33 views

EulerOS Virtualization 3.0.6.0 : openldap (EulerOS-SA-2022-1087)

According to the versions of the openldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd...

7.5CVSS7.2AI score0.02858EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/10/27 12:0 a.m.30 views

OpenLDAP < 2.4.56 Multiple DoS Vulnerabilities

OpenLDAP is prone to multiple denial of service DoS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.5CVSS7.7AI score0.02858EPSS
Exploits0References1
Rows per page
Query Builder