4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
84.6%
Race condition in nss_ldap, when used in applications that are linked
against the pthread library and fork after a call to nss_ldap, might send
user data to the wrong process because of improper handling of the LDAP
connection. NOTE: this issue was originally reported for Dovecot with the
wrong mailboxes being returned, but other applications might also be
affected.