Lucene search
K
RedhatDirectory Server

39 matches found

CVE
CVE
added 2021/03/26 4:43 p.m.274 views

CVE-2020-35518

CVE-2020-35518 affects 389-ds-base: information disclosure during DN binding that lets an unauthenticated attacker check whether an entry exists. Disclosures in MiracleLinux (AXSA:2021-1847/2281) show updates for 389-ds-base/1.3.10.2-12.el7 and 389-ds:1.4 modules are available; Ubuntu Red Hat and...

5.3CVSS5.1AI score0.01538EPSS
CVE
CVE
added 2022/10/14 12:0 a.m.235 views

CVE-2022-2850

Summary: CVE-2022-2850 affects 389-ds-base where the Content Synchronization plugin, when enabled, allows an authenticated user to trigger a NULL pointer dereference and cause a denial of service. This entry is tied to an incomplete fix for CVE-2021-3514. What’s affected (from connected docs): 38...

6.5CVSS6.3AI score0.01238EPSS
CVE
CVE
added 2024/02/12 1:4 p.m.217 views

CVE-2024-1062

CVE-2024-1062 is a heap overflow in 389-ds-base that can cause a denial of service when a value larger than 256 characters is written to the log_entry_attr field. The CVE is evaluated as a local, high-availability risk with a MEDIUM base score from CVSS 3.1 (AV:L, AC:L, PR:L, UI:N, S:U, C:N, I:N,...

5.5CVSS5.3AI score0.00304EPSS
CVE
CVE
added 2022/06/01 3:8 p.m.138 views

CVE-2022-1949

CVE-2022-1949 is described in connected sources as an access control bypass in 389-ds-base LDAP server caused by mishandling of search filters. This weakness could allow any remote unauthenticated user to issue a filter that returns database items the caller should not access, potentially exposin...

7.5CVSS7.4AI score0.01394EPSS
CVE
CVE
added 2014/08/21 2:0 p.m.113 views

CVE-2014-3562

The CVE-2014-3562 issue affects Red Hat Directory Server 8 and 389 Directory Server when debugging is enabled, where the server could disclose potentially sensitive replicated metadata during directory searches. Root cause: replication metadata is exposed in search results if debugging is enabled...

5CVSS6.2AI score0.02198EPSS
CVE
CVE
added 2023/02/27 12:0 a.m.99 views

CVE-2023-1055

CVE-2023-1055 affects RHDS 11/12 and Red Hat Directory Server components (389-ds-base). The issue occurs when LDAP browsing entries decodes userPassword instead of userCertificate, leaking sensitive information. A local attacker with a cockpit-389-ds process can list processes and display hashed ...

5.5CVSS4.9AI score0.00188EPSS
CVE
CVE
added 2024/07/09 4:39 p.m.94 views

CVE-2024-6237

The issue CVE-2024-6237 affects 389-ds-base (389 Directory Server) and can be exploited by an unauthenticated user sending a crafted extended search request to trigger a server crash/DoS. Publicly referenced advisories (Red Hat RHSA-2024:4997, OSV and OSV editions) indicate affected Red Hat-based...

6.5CVSS6.3AI score0.00923EPSS
CVE
CVE
added 2013/07/31 10:0 a.m.91 views

CVE-2013-2219

The CVE affects Red Hat Directory Server and its open source equivalent, 389 Directory Server. The root cause is improper enforcement of access controls for attributes during search filter evaluation, enabling remote authenticated users to retrieve values of restricted attributes via a query. The...

4CVSS5.6AI score0.01756EPSS
CVE
CVE
added 2013/11/23 11:0 a.m.88 views

CVE-2013-4485

The CVE-2013-4485 issue affects 389-ds-base (389 Directory Server) and is cited across multiple advisories linked to 389-ds-base 1.2.11.15, including MiracleLinux AXSA-2014-026/02 and AXSA-2014-109 references. The root cause is improper handling of GER (Get Effective Rights) search queries when t...

4CVSS6AI score0.01992EPSS
CVE
CVE
added 2020/01/09 8:52 p.m.80 views

CVE-2010-3282

CVE-2010-3282 covers a local information disclosure in HP-UX Directory Server and Red Hat Directory Server for HP-UX where audit logging logs the Directory Manager password (nsslapd-rootpw) in cleartext when changing cn=config:nsslapd-rootpw, enabling local users to read sensitive data from logs....

3.3CVSS3.7AI score0.00264EPSS
CVE
CVE
added 2012/07/03 4:0 p.m.77 views

CVE-2012-2678

CVE-2012-2678 affects 389-ds-base (also Red Hat Directory Server) before version 1.2.11.6. Per the description, after an LDAP user’s password is changed and before the server is reset, an attacker could remotely read the plaintext password via the unhashed#user#password attribute. This vulnerabil...

1.2CVSS6.6AI score0.00636EPSS
CVE
CVE
added 2008/08/29 6:0 p.m.74 views

CVE-2008-2930

CVE-2008-2930 affects Red Hat Directory Server (RHDS) 7.1 before SP7, RHDS 8, and Fedora Directory Server 1.1.1. The issue allows remote attackers to cause a denial of service (CPU consumption and search outage) via crafted LDAP search requests, exploiting a single-threaded regular-expression sub...

7.1CVSS6.3AI score0.06555EPSS
CVE
CVE
added 2011/02/23 6:0 p.m.71 views

CVE-2011-0019

CVE-2011-0019 affects 389 Directory Server / Red Hat Directory Server (Directory Server 1.2.7.5 / 1.2.x) where slapd/ns-slapd mishandles simple paged result searches. The underlying issue is improper handling of Simple Paged Results, allowing remote attackers to trigger a denial-of-service (daemo...

7.5CVSS7.4AI score0.01422EPSS
CVE
CVE
added 2008/04/16 6:0 p.m.70 views

CVE-2008-0893

CVE-2008-0893 affects Red Hat Directory Server Admin Server (redhat-ds-admin), used with Red Hat Directory Server 8.0 on RHEL4/RHEL5. The vulnerability stems from inadequate restriction of CGI script access, allowing an unauthenticated remote user to access CGI endpoints and perform administrativ...

7.5CVSS6.4AI score0.02012EPSS
CVE
CVE
added 2008/08/29 6:0 p.m.69 views

CVE-2008-2929

The CVE-2008-2929 event concerns multiple XSS vulnerabilities in the adminutil library used by the Directory Server Administration Express and Directory Server Gateway web interfaces. Affected systems include Red Hat Directory Server 7.1 prior to SP7, 8 EL4/EL5, and Fedora Directory Server. The X...

4.3CVSS5.5AI score0.017EPSS
CVE
CVE
added 2019/11/05 7:27 p.m.68 views

CVE-2010-2222

The CVE-2010-2222 issue affects Red Hat Directory Server 8 and 389 Directory Server, arising from the _ger_parse_control function. The root cause is a code issue in this function that allows a crafted search query to trigger a denial of service via a NULL pointer dereference. Documented impact in...

7.5CVSS7.2AI score0.01349EPSS
CVE
CVE
added 2011/02/23 6:0 p.m.68 views

CVE-2011-0532

In Red Hat Directory Server (389 Directory Server 1.2.x / Red Hat Directory Server 8.2.x), three scripts (backup/restore, main init, ldap-agent) place a zero-length entry in LD_LIBRARY_PATH, enabling local privilege escalation via a Trojan horse shared library in the attacker’s directory. This is...

6.2CVSS6.6AI score0.00284EPSS
CVE
CVE
added 2011/02/23 6:0 p.m.67 views

CVE-2011-0022

CVE-2011-0022 involves Red Hat Directory Server 1.2.x where setup scripts for multiple unprivileged instances create /var/run/dirsrv with 0777 permissions. This permits a local user to interfere with PID files in that directory, causing a denial of service by replacing PID files or preventing pro...

4.7CVSS6.7AI score0.00294EPSS
CVE
CVE
added 2012/07/03 4:0 p.m.67 views

CVE-2012-2746

CVE-2012-2746 affects 389-ds-base/Red Hat Directory Server prior to 1.2.11.6: when an LDAP user password is changed and audit logging is enabled, the new password is saved to logs in plain text, permitting remote authenticated users to read it. Affected version note appears in multiple advisories...

2.1CVSS6.2AI score0.01329EPSS
CVE
CVE
added 2008/05/12 4:0 p.m.66 views

CVE-2008-1677

The CVE-2008-1677 issue affects Red Hat Directory Server 8.0 and 7.1 before Service Pack 6, where the regular expression handler can overflow a buffer during translation of a user-supplied LDAP search pattern. This denial-of-service vulnerability may allow an unauthenticated remote attacker to cr...

7.5CVSS7.8AI score0.04931EPSS
CVE
CVE
added 2008/04/16 6:0 p.m.65 views

CVE-2008-0892

The CVE-2008-0892 issue affects the replication monitor CGI script (repl-monitor-cgi.pl) in the Red Hat Administration Server used with Red Hat Directory Server 8.0 on RHEL4/RHEL5, allowing remote command execution via the CGI interface. The root cause is a command-injection flaw in the replicati...

9CVSS7AI score0.1402EPSS
CVE
CVE
added 2008/08/29 6:0 p.m.63 views

CVE-2008-2928

CVE-2008-2928 affects Red Hat Directory Server 7.1 with Service Pack 7. A buffer overflow in the adminutil CGI components can be triggered by a crafted Accept-Language HTTP header, allowing remote attackers to crash the daemon or possibly execute arbitrary code. Connected advisory RHSA-2008:0596 ...

10CVSS7.7AI score0.06643EPSS
CVE
CVE
added 2008/08/29 6:0 p.m.62 views

CVE-2008-3283

CVE-2008-3283 affects Red Hat Directory Server 7.1 (before SP7), Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 and earlier. The vulnerability is due to memory leaks that can be exploited remotely to cause a denial of service via the authentication/bind phase and via anonymous LDAP...

7.8CVSS6.4AI score0.02854EPSS
CVE
CVE
added 2010/08/17 5:31 p.m.60 views

CVE-2010-2241

CVE-2010-2241 affects Red Hat Directory Server up to version 8.1.x (before 8.2). The vulnerable component comprises the setup-ds.pl and setup-ds-admin.pl setup scripts, which create cache files with world-readable permissions. This underprivileged exposure allows a local user to obtain sensitive ...

2.1CVSS6AI score0.00348EPSS
CVE
CVE
added 2008/03/12 12:0 a.m.58 views

CVE-2008-0890

CVE-2008-0890 affects Red Hat Directory Server 7.1 prior to SP4. The issue is insecure permissions on certain directories that allow a local user to replace Java ARchive (JAR) files and execute arbitrary code with the server’s privileges. The official Red Hat advisory RHSA-2008:0173 documents the...

4.6CVSS7.2AI score0.00374EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.57 views

CVE-2008-0889

Affected product/versions: Red Hat Directory Server 8.0 running on Red Hat Enterprise Linux. Vulnerable component: the startup script for the redhat-idm-console. Root cause: insecure permissions on the redhat-idm-console script allow local users to modify it and execute arbitrary code. Impact: lo...

2.1CVSS7.3AI score0.00405EPSS
CVE
CVE
added 2026/05/20 9:0 a.m.51 views

CVE-2026-9064

The CVE-2026-9064 issue affects the 389-ds-base LDAP server. The get_ldapmessage_controls_ext() function does not bound the number of LDAP message controls, allowing a remote, unauthenticated attacker to send requests with hundreds of thousands of minimal controls within the default BER size (2 M...

7.5CVSS5.8AI score0.00815EPSS
CVE
CVE
added 2026/06/09 1:9 p.m.42 views

CVE-2026-11790

The CVE-2026-11790 entry describes a vulnerability in 389 Directory Server’s PBKDF2-SHA256 password storage plugin where there is no upper bound on the iteration count extracted from stored password hashes. A privileged attacker who can modify a user’s password hash can trigger excessive CPU usag...

4.9CVSS5.4AI score0.00291EPSS
CVE
CVE
added 2026/06/09 1:2 p.m.41 views

CVE-2026-11787

The CVE-2026-11787 entry concerns 389 Directory Server (389-ds-base). A heap buffer over-read occurs in the ldap_utf8prev() function when reading bytes before the start of a buffer during string filter parsing (via str2simple), which may influence internal filter processing behavior. Documented i...

6.3CVSS5.7AI score0.00177EPSS
CVE
CVE
added 2026/06/09 1:2 p.m.35 views

CVE-2026-11789

Affected software : 389 Directory Server (389-ds-base). Vulnerable component : SMD5 password storage plugin. Root cause : unsigned integer underflow when computing salt length from a crafted password hash shorter than 16 bytes, causing a buffer over-read and LDAP server crash during authenticatio...

6.5CVSS5.7AI score0.00282EPSS
CVE
CVE
added 2026/06/09 12:57 p.m.34 views

CVE-2026-11786

CVE-2026-11786 affects the 389 Directory Server (389-ds-base). The issue is a heap-out-of-bounds read in the LDIF parser when processing attribute types with trailing semicolons during database import, traced to ldif parser function str2entry_state_information_from_type(). Consequences are descri...

6.5CVSS5.6AI score0.0016EPSS
CVE
CVE
added 2026/06/17 2:27 p.m.33 views

CVE-2026-12528

Affected software/component: 389 Directory Server, in function __aclp__normalize_acltxt() of aclparse.c. Issue: malformed ACI strings can trigger heap-buffer-overflow writes and reads during ACI parsing; the keyword length after whitespace stripping is not validated, causing 1-byte out-of-bounds ...

5.4CVSS5.3AI score0.00226EPSS
CVE
CVE
added 2026/06/08 4:17 p.m.32 views

CVE-2026-11611

CVE-2026-11611 concerns the Content Synchronization persistent search plugin in 389 Directory Server. The flaw enables denial of service via unbounded memory growth when an authenticated client stops reading sync responses, and there are additional race conditions in the plugin thread lifecycle t...

6.5CVSS5.4AI score0.00244EPSS
CVE
CVE
added 2026/06/09 1:2 p.m.32 views

CVE-2026-11788

The vulnerability CVE-2026-11788 affects 389 Directory Server (389-ds-base) in the dereference control plugin BER parser. The root cause is that the plugin does not check for BER allocation failures before using structures, enabling a null pointer/dereference scenario that can crash the LDAP serv...

7.5CVSS5.5AI score0.00346EPSS
CVE
CVE
added 2026/06/09 12:57 p.m.29 views

CVE-2026-11785

The CVE-2026-11785 entry concerns 389 Directory Server (389-ds-base) with a type confusion in the SSO token extended operation handler. This flaw allows a partial leak of stack address information via LDAP responses to authenticated users, arising from ber_printf type confusion in the SSO token h...

4.3CVSS5.3AI score0.00179EPSS
CVE
CVE
added 2026/06/18 2:44 p.m.22 views

CVE-2026-11791

The CVE-2026-11791 entry concerns 389 Directory Server (389-ds-base), where during schema reload the attr_syntax_swap_ht() function unconditionally frees attribute syntax information nodes, bypassing refcount-based deferred deletion. This can lead to use-after-free or double-free when LDAP query ...

5CVSS5.2AI score0.00212EPSS
CVE
CVE
added last week20 views

CVE-2026-15041

The CVE describes a flaw in 389 Directory Server (389-ds-base): non-constant-time comparison in the PBKDF2-SHA256 password verification uses standard memcmp() instead of a constant-time function. This could allow a remote attacker to leverage timing measurements of LDAP bind attempts to infer par...

3.7CVSS5.9AI score0.003EPSS
CVE
CVE
added 2026/07/07 1:54 p.m.14 views

CVE-2026-14940

Affected software/component: 389 Directory Server (389-ds-base). Vulnerability: heap-buffer-overflow in DN normalization when processing a legacy-quoted value encoding a multivalued nested RDN, causing writes past the end of a heap allocation. Attack scenario: an unauthenticated remote attacker c...

5.3CVSS5.9AI score0.00294EPSS
CVE
CVE
added 2026/07/07 3:48 p.m.9 views

CVE-2026-14969

The CVE-2026-14969 entry concerns 389-ds-base. The LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC, enabling a privileged attacker with filesystem access to detect plaintext equality across encrypted entries by ciphertext block comparison. ...

4.4CVSS5.9AI score0.00077EPSS