Опубликовано: 28 мая 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4
CVSS3: 6.5
Описание
When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 1.4.4.11-2 |
| esm-apps/bionic | released | 1.3.7.10-1ubuntu1+esm1 |
| esm-apps/focal | released | 1.4.3.6-2ubuntu0.1~esm1 |
| esm-apps/jammy | not-affected | 1.4.4.11-2 |
| esm-apps/noble | not-affected | 1.4.4.11-2 |
| esm-apps/xenial | released | 1.3.4.9-1ubuntu0.1~esm1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| focal | ignored | end of standard support, was needed |
| groovy | ignored | end of life |
Показывать по
10
EPSS
Процентиль: 29%
0.00103
Низкий
4 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
redhat
больше 4 лет назад
When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.
CVSS3: 6.5
nvd
около 4 лет назад
When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.
CVSS3: 6.5
debian
около 4 лет назад
When using a sync_repl client in 389-ds-base, an authenticated attacke ...
EPSS
Процентиль: 29%
0.00103
Низкий
4 Medium
CVSS2
6.5 Medium
CVSS3