Описание
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-0996
- https://access.redhat.com/errata/RHSA-2022:5239
- https://access.redhat.com/errata/RHSA-2022:5620
- https://access.redhat.com/errata/RHSA-2022:5823
- https://access.redhat.com/errata/RHSA-2022:8162
- https://access.redhat.com/errata/RHSA-2022:8976
- https://access.redhat.com/security/cve/CVE-2022-0996
- https://bugzilla.redhat.com/show_bug.cgi?id=2064769
- https://github.com/ByteHackr/389-ds-base
- https://lists.debian.org/debian-lts-announce/2023/04/msg00026.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QFD7CBBX3IZOSHEWL2EYKRLOEQSXCZ6
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PYT2IQJFHQWZENJJRY6EJB3XIFZGNT7F
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4QFD7CBBX3IZOSHEWL2EYKRLOEQSXCZ6
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PYT2IQJFHQWZENJJRY6EJB3XIFZGNT7F
Связанные уязвимости
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
A vulnerability was found in the 389 Directory Server that allows expi ...
Уязвимость аутентификации сервера службы каталогов 389 Directory Server, связанная с неверным сроком действия сеанса, позволяющая нарушителю получить доступ к конфиденциальным данным