Lucene search
+L

6 matches found

NVD
NVD
added 2026/07/07 4:16 p.m.10 views

CVE-2026-14969

A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext block...

4.4CVSS0.00077EPSS
Exploits0References2
OSV
OSV
added 2026/07/07 4:16 p.m.3 views

DEBIAN-CVE-2026-14969

A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext block...

4.4CVSS6AI score0.00077EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/07/07 3:48 p.m.6 views

CVE-2026-14969

A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext block...

4.4CVSS5.9AI score0.00077EPSS
Exploits0
CVE
CVE
added 2026/07/07 3:48 p.m.9 views

CVE-2026-14969

The CVE-2026-14969 entry concerns 389-ds-base. The LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC, enabling a privileged attacker with filesystem access to detect plaintext equality across encrypted entries by ciphertext block comparison. ...

4.4CVSS5.9AI score0.00077EPSS
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-14969

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations,...

4.4CVSS6.1AI score0.00077EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2003/03/20 12:0 a.m.6 views

PT-2003-1126 · Openldap · Openldap

Name of the Vulnerable Software and Affected Versions: OpenLDAP versions 2.1.12 and earlier Description: The issue allows remote attackers to cause a denial of service, potentially leading to disruption of protected information availability. This is due to the ldbm back exop passwd function in th...

5CVSS6.6AI score0.026EPSS
Exploits0References11
Rows per page
Query Builder