Lucene search
K

35 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in the 389-DS-base

A denial-of-service vulnerability was discovered in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service when attempting to log in using a user with a malformed hash in their password...

5.7CVSS6.6AI score0.00573EPSS
Exploits0References2
CVE
CVE
added 2026/05/28 4:42 a.m.48 views

CVE-2026-9801

CVE-2026-9801 affects Keycloak. A remote attacker with high privileges (e.g., a realm administrator configuring a malicious LDAP server or compromising an upstream LDAP server) can trigger an OutOfMemoryError by sending a malformed LDAP password policy response during authentication, causing the ...

4.9CVSS5.8AI score0.00476EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/28 4:42 a.m.11 views

CVE-2026-9801 Keycloak: keycloak: denial of service via malformed ldap password policy response

A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol LDAP server or an attacker compromising an upstream LDAP server, could exploit this vulnerability. By sending a malformed LDAP password...

4.9CVSS5.8AI score0.00476EPSS
Exploits0References6
OSV
OSV
added 2026/05/16 12:49 a.m.7 views

CLSA-2026-1778892584 389-ds-base: Fix of 3 CVEs

CVE-2024-5953: fix DoS via malformed password hash on bind - CVE-2024-2199: fix DoS via malformed userPassword modify - CVE-2025-2487: fix NULL pointer deref on failed MODDN operations...

5.7CVSS5.8AI score0.00573EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : 389-ds-base-1.3.11.1-5.el7 (AXSA:2024-8119:05)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8119:05 advisory. 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request CVE-2024-3657 389-ds-base: Malformed userPassword may cause...

7.5CVSS5.6AI score0.01256EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : 389-ds-base-2.4.5-9.el9_4 (AXSA:2024-8654:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8654:07 advisory. 389-ds-base: Malformed userPassword hash may cause Denial of Service CVE-2024-5953 389-ds-base: unauthenticated user can trigger a DoS by sending a...

6.5CVSS5.6AI score0.00923EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-3764

Malware in sbrugna...

5CVSS6AI score0.14051EPSS
Exploits0References32
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-0692

Malware in sbrugna...

6.1CVSS6.4AI score0.00629EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-47135

Malicious code in bioql PyPI...

5.7CVSS6.4AI score0.00573EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2025/02/18 10:15 a.m.7 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/01 3:54 p.m.1 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
OSV
OSV
added 2024/09/20 11:9 a.m.2 views

OESA-2024-2164 three-eight-nine-ds-base security update

389-ds-base is an LDAPv3 compliant server which includes the LDAP server and command line utilities for server administration. Security Fixes: An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed...

7.5CVSS6.8AI score0.01394EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/09/11 6:38 a.m.4 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/11 12:51 a.m.3 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/11 12:9 a.m.8 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/03 5:34 a.m.6 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/08/21 11:58 a.m.1 views

389-ds-base: Malformed userPassword hash may cause Denial of Service

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/02 3:38 p.m.3 views

389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c

A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying userPassword using malformed input...

5.7CVSS5.7AI score0.00565EPSS
Exploits0References5
OSV
OSV
added 2024/06/18 10:15 a.m.3 views

DEBIAN-CVE-2024-5953

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS6.3AI score0.00573EPSS
Exploits0References1
OSV
OSV
added 2024/06/18 10:15 a.m.17 views

CVE-2024-5953

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password...

5.7CVSS6.2AI score0.00573EPSS
Exploits0References12
Rows per page
Query Builder