Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:23350
HistoryApr 10, 2020 - 12:23 a.m.

Information Disclosure

2020-04-1000:23:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

EPSS

0.011

Percentile

84.7%

nss_ldap is vulnerable to information disclosure. A race condition was discovered in nss_ldap which affected certain applications which make LDAP connections, such as Dovecot. This could cause nss_ldap to answer a request for information about one user with information about a different user.

References