cbcvebase.

Openldap vulnerabilities

59 known vulnerabilities affecting openldap/openldap.

Total CVEs
59
CISA KEV
0
Public exploits
7
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH28MEDIUM25LOW4

Vulnerabilities

Page 1 of 3
CVE-2010-0211P2CRITICALCVSS 9.8PoCv2.4.222010-07-28
CVE-2010-0211 [CRITICAL] CWE-252 CVE-2010-0211: The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a ca The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences, which triggers a free of an
nvdosv
CVE-2022-29155P2CRITICALCVSS 9.8≥ 2.0, < 2.5.12≥ 2.6.0, < 2.6.22022-05-04
CVE-2022-29155 [CRITICAL] CWE-89 CVE-2022-29155: In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the ex In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the search filter is processed, due to a lack of proper escaping.
nvdosv
CVE-2020-36221P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36221 [HIGH] CWE-191 CVE-2020-36221: An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certif An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck).
nvdosv
CVE-2020-36228P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36228 [HIGH] CWE-191 CVE-2020-36228: An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certif An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service.
nvdosv
CVE-2020-36227P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36227 [HIGH] CWE-835 CVE-2020-36227: A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service.
nvdosv
CVE-2020-36222P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36222 [HIGH] CWE-617 CVE-2020-36222: A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the sasl A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service.
nvdosv
CVE-2021-27212P3HIGHCVSS 7.5≤ 2.4.57v2.5.0+1 more2021-02-14
CVE-2021-27212 [HIGH] CWE-617 CVE-2021-27212: In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.
nvdosv
CVE-2006-6493P3MEDIUMCVSS 5.1PoC≤ 2.4.3v1.0+117 more2006-12-13
CVE-2006-6493 [MEDIUM] CVE-2006-6493: Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and ea Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote attackers to execute arbitrary code via an LDAP bind request using the LDAP_AUTH_KRBV41 authentication method and long credential data.
nvd
CVE-2015-6908P3MEDIUMCVSS 5.0PoC≤ 2.4.422015-09-11
CVE-2015-6908 [MEDIUM] CWE-20 CVE-2015-6908: The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote att The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
nvdosv
CVE-2006-5779P3HIGHCVSS 7.5fixed in 2.3.292006-11-07
CVE-2006-5779 [HIGH] CWE-617 CVE-2006-5779: OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP BIND requests with long authcid names, which triggers an assertion failure.
nvd
CVE-2011-1081P4MEDIUMCVSS 5.0PoCv2.4.6v2.4.7+16 more2011-03-20
CVE-2011-1081 [MEDIUM] CWE-399 CVE-2011-1081: modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of servi modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distinguished Name (DN) modification request (aka MODRDN operation) that contains an empty value for the OldDN field.
nvdosv
CVE-2008-2952P4MEDIUMCVSS 5.0PoCv2.2.4v2.2.5+45 more2008-07-01
CVE-2008-2952 [MEDIUM] CWE-399 CVE-2008-2952: liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (progr liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.
nvdosv
CVE-2019-13565P3HIGHCVSS 7.5≥ 2.0, ≤ 2.4.472019-07-26
CVE-2019-13565 [HIGH] CVE-2019-13565: An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session en An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is re
nvdosv
CVE-2011-1025P3MEDIUMCVSS 6.8v2.4.6v2.4.7+16 more2011-03-20
CVE-2011-1025 [MEDIUM] CWE-287 CVE-2011-1025: bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Di bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which allows remote attackers to bypass intended access restrictions via an arbitrary password.
nvdosv
CVE-2020-36230P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36230 [HIGH] CWE-617 CVE-2020-36230: A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.50 A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service.
nvdosv
CVE-2020-25709P3HIGHCVSS 7.5fixed in 2.4.56vopenldap 2.4.562021-05-18
CVE-2020-25709 [HIGH] CWE-617 CVE-2020-25709: A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be pro A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability.
nvdosv
CVE-2015-3276P3HIGHCVSS 7.5fixed in 2.52015-12-07
CVE-2015-3276 [HIGH] CVE-2015-3276: The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse Open The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be used and allow remote attackers to have unspecified impact via unknown vectors.
nvd
CVE-2020-36225P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36225 [HIGH] CWE-415 CVE-2020-36225: A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the sasl A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service.
nvdosv
CVE-2020-36224P3HIGHCVSS 7.5fixed in 2.4.572021-01-26
CVE-2020-36224 [HIGH] CWE-763 CVE-2020-36224: A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash i A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service.
nvdosv
CVE-2020-25710P3HIGHCVSS 7.5fixed in 2.4.56vopenldap 2.4.562021-05-28
CVE-2020-25710 [HIGH] CWE-617 CVE-2020-25710: A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a mal A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.
nvdosv
Openldap vulnerabilities | cvebase