389 Directory Server@- Security Vulnerabilities and Issues — 389 Directory Server@- CVE List

Lucene search

Redhat389 Directory Server-

3 matches found

CVE•added 2021/05/28 3:15 p.m.•239 views

CVE-2021-3514

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

6.5CVSS6.2AI score0.00103EPSS

CVE•added 2024/07/09 5:15 p.m.•60 views

CVE-2024-6237

A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.

6.5CVSS6.3AI score0.01744EPSS

CVE•added 2019/11/05 8:15 p.m.•51 views

CVE-2010-2222

The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service (NULL pointer dereference) via a crafted search query.

7.5CVSS7.2AI score0.00436EPSS