Lucene search
Ubuntu.comUB:CVE-2018-10871HistoryJul 18, 2018 - 12:00 a.m.
CVE-2018-10871
2018-07-1800:00:00
ubuntu.com
ubuntu.com
10
0.002 Low
EPSS
Percentile
53.2%
389-ds-base before versions 1.3.8.5, 1.4.0.12 is vulnerable to a Cleartext
Storage of Sensitive Information. By default, when the Replica and/or
retroChangeLog plugins are enabled, 389-ds-base stores passwords in
plaintext format in their respective changelog files. An attacker with
sufficiently high privileges, such as root or Directory Manager, can query
these files in order to retrieve plaintext passwords.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | 389-ds-base | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | 389-ds-base | < any | UNKNOWN |
Related
cvelist
cvelist
CVE-2018-10871
2018-07-18 13:00:00
redhatcve
redhatcve
CVE-2018-10871
2018-06-27 16:18:46
prion
prion
Design/Logic Flaw
2018-07-18 13:29:00
cve
cve
CVE-2018-10871
2018-07-18 13:29:00
debiancve
debiancve
CVE-2018-10871
2018-07-18 13:29:00
nessus
nessus
EulerOS 2.0 SP5 : 389-ds-base (EulerOS-SA-2019-2127)
2019-11-12 00:00:00
EulerOS 2.0 SP3 : 389-ds-base (EulerOS-SA-2019-2554)
2019-12-19 00:00:00
Debian DLA-1483-1 : 389-ds-base security update
2018-08-31 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2019-2554)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2019-2127)
2020-01-23 00:00:00
Debian: Security Advisory (DLA-1483-1)
2018-09-02 00:00:00
oraclelinux
oraclelinux
389-ds-base security, bug fix, and enhancement update
2018-11-05 00:00:00
389-ds:1.4 security, bug fix, and enhancement update
2019-11-14 00:00:00
redhat
redhat
mageia
mageia
Updated 389-ds-base packages fix security vulnerabilities
2019-12-25 22:08:41
amazon
amazon
Important: 389-ds-base
2020-01-14 18:03:00