Redhat 389-Ds-Base vulnerabilities
2 known vulnerabilities affecting redhat/389-ds-base.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2019-10171HIGHCVSS 7.5v1.4.0.x before 1.4.0.172019-08-02
CVE-2019-10171 [HIGH] CWE-770 CVE-2019-10171: It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1
It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was incorrectly applied in RHEL 7.5. An attacker would still be able to provoke excessive CPU consumption leading to a denial of service.
cvelistv5
CVE-2018-14648HIGHCVSS 7.5v1.4.0.x before 1.4.0.172018-09-28
CVE-2018-14648 [HIGH] CWE-400 CVE-2018-14648: A flaw was found in 389 Directory Server. A specially crafted search query could lead to excessive C
A flaw was found in 389 Directory Server. A specially crafted search query could lead to excessive CPU consumption in the do_search() function. An unauthenticated attacker could use this flaw to provoke a denial of service.
nvd