| Max CVSS | 7.1 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-15135 | 4.3 |
It was found that 389-ds-base since 1.3.6.1 up to and including 1.4.0.3 did not always handle internal hash comparison operations correctly during the authentication process. A remote, unauthenticated attacker could potentially use this flaw to bypas
|
12-02-2023 - 23:28 | 24-01-2018 - 15:29 | |
| CVE-2018-14624 | 5.0 |
A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in log__error_emergency(). An attacker could send a flood of modific
|
12-02-2023 - 22:15 | 06-09-2018 - 14:29 | |
| CVE-2018-10935 | 4.0 |
A flaw was found in the 389 Directory Server that allows users to cause a crash in the LDAP server using ldapsearch with server side sort.
|
09-10-2019 - 23:33 | 11-09-2018 - 15:29 | |
| CVE-2018-10850 | 7.1 |
389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds-base handles persistent search, resulting in a crash if the server is under load. An anonymous attacker could use this flaw to trigger a denial of servi
|
15-05-2019 - 21:29 | 13-06-2018 - 20:29 | |
| CVE-2017-15134 | 5.0 |
A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-sla
|
15-05-2019 - 21:29 | 01-03-2018 - 22:29 |