CVE-2021-3514

Опубликовано: 28 мая 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4

CVSS3: 6.5

Описание

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	1.4.4.11-2
esm-apps/bionic	released	1.3.7.10-1ubuntu1+esm1
esm-apps/focal	released	1.4.3.6-2ubuntu0.1~esm1
esm-apps/jammy	not-affected	1.4.4.11-2
esm-apps/noble	not-affected	1.4.4.11-2
esm-apps/xenial	released	1.3.4.9-1ubuntu0.1~esm1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
focal	ignored	end of standard support, was needed
groovy	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 45%

0.00219

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-3514

CVSS3: 6.5

redhat

больше 4 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

CVE-2021-3514

CVSS3: 6.5

nvd

больше 4 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

CVE-2021-3514

CVSS3: 6.5

debian

больше 4 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacke ...

openSUSE-SU-2021:0868-1

suse-cvrf

больше 4 лет назад

Security update for 389-ds

SUSE-SU-2021:1878-1

suse-cvrf

больше 4 лет назад

Security update for 389-ds

EPSS

Процентиль: 45%

0.00219

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2021-3514

Описание

Пакет 389-ds-base

Ссылки на источники

Связанные уязвимости