CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

OSV•added 2026/04/22 9:20 a.m.•1 views

CLSA-2025-1758636652 openldap: Fix of 14 CVEs

Rebase to 2.4.58 to fix the following vulnerabilities: - CVE-2020-12243: fix denial of service caused by LDAP search filters with nested boolean expressions - CVE-2020-36221: fix integer underflow in the Certificate Exact Assertion processing - CVE-2020-36223: fix slapd crash in the Values Return...

7.5CVSS7.1AI score0.7152EPSS

Exploits1References1

Tenable Nessus•added 2025/11/13 12:0 a.m.•2 views

Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2020-25692)

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service. This plugin only works with...

7.5CVSS7AI score0.04749EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2016-5958

Malware in sbrugna...

7.5CVSS8.5AI score0.00444EPSS

Exploits0References11

SUSE CVE•added 2023/02/15 6:0 a.m.•1 views

SUSE CVE-2010-0212

OpenLDAP 2.4.22 allows remote attackers to cause a denial of service crash via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smrnormalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schemainit.c, as...

5CVSS8.9AI score0.66867EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 3:53 a.m.•1 views

SUSE CVE-2020-25692

7.5CVSS6.9AI score0.04749EPSS

Exploits0References135

OSV•added 2022/02/24 7:15 p.m.•1 views

DEBIAN-CVE-2021-44533

Node.js 12.22.9, 14.18.3, 16.13.2, and 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relative Distinguished Name, for example, in...

5.3CVSS6.4AI score0.00364EPSS

Exploits1References1

OSV•added 2022/02/24 7:15 p.m.•3 views

AZL-8819 CVE-2021-44533 affecting package nodejs for versions less than 16.14.0-1

5.3CVSS6.8AI score0.00364EPSS

Exploits1References1

RedHat Linux•added 2021/04/27 11:54 a.m.•1 views

openldap: NULL pointer dereference for unauthenticated packet in slapd

A NULL pointer dereference flaw was found in the OpenLDAP server, during a request for renaming RDNs. This flaw allows a remote, unauthenticated attacker to crash the slapd process by sending a specially crafted request, causing a denial of service. The highest threat from this vulnerability is t...

7.5CVSS7.3AI score0.04749EPSS

Exploits0References4

Microsoft CVE•added 2020/12/09 8:0 a.m.•1 views

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55 during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request causing a Denial of Service.

...

7.5CVSS7AI score0.04749EPSS

Exploits0

OSV•added 2020/07/01 11:15 a.m.•1 views

UBUNTU-CVE-2020-15474

In nDPI through 3.2, there is a stack overflow in extractRDNSequence in lib/protocols/tls.c...

9.8CVSS7.3AI score0.00502EPSS

Exploits0References3

OSV•added 2017/07/08 12:29 p.m.•0 views

DEBIAN-CVE-2017-11107

phpLDAPadmin through 1.2.3 has XSS in htdocs/entrychooser.php via the form, element, rdn, or container parameter...

6.1CVSS6.4AI score0.0006EPSS

Exploits1References1

AlpineLinux•added 2017/07/08 12:0 p.m.•22 views

CVE-2017-11107

phpLDAPadmin through 1.2.3 has XSS in htdocs/entrychooser.php via the form, element, rdn, or container parameter...

6.1CVSS6AI score0.0006EPSS

Exploits1

Debian CVE•added 2017/07/08 12:0 p.m.•28 views

CVE-2017-11107

phpLDAPadmin through 1.2.3 has XSS in htdocs/entrychooser.php via the form, element, rdn, or container parameter...

6.1CVSS6AI score0.0006EPSS

Exploits1

NVD•added 2017/06/08 7:29 p.m.•18 views

CVE-2016-4992

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects...

7.5CVSS7.6AI score0.00444EPSS

Exploits0References4

Prion•added 2017/06/08 7:29 p.m.•21 views

Design/Logic Flaw

5CVSS6.9AI score0.00444EPSS

Exploits0References4Affected Software4

UbuntuCve•added 2017/06/08 7:29 p.m.•23 views

CVE-2016-4992

7.5CVSS6.8AI score0.00444EPSS

Exploits0References2

OSV•added 2017/06/08 7:29 p.m.•5 views

CVE-2016-4992

7.5CVSS8.5AI score

Exploits0References4

Debian CVE•added 2017/06/08 7:0 p.m.•25 views

CVE-2016-4992

7.5CVSS7.6AI score0.00444EPSS

Exploits0

Prion•added 2011/04/21 10:55 a.m.•12 views

Memory corruption

Memory leak in the ldapexploderdn API function in IBM Tivoli Directory Server TDS 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allows remote authenticated users to cause a denial of service memory consumption by making many function calls...

4CVSS6.5AI score0.0036EPSS

Exploits0References2Affected Software1

Check Point Advisories•added 2010/10/13 12:0 a.m.•5 views

OpenLDAP Modrdn RDN NULL String Denial of Service (CVE-2010-0212)

OpenLDAP is an open-source implementation of the Lightweight Directory Access Protocol LDAP service. On a default installation, the OpenLDAP server uses TCP port 389 for communication. A remote code execution vulnerability has been reported in OpenLDAP. The vulnerability is due to a memory...

5CVSS9.5AI score0.66867EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by