The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do not properly restrict access to entity attributes, which allows remote authenticated users to obtain sensitive information via a search query for the attribute.
CPE | Name | Operator | Version |
---|---|---|---|
directory_server | le | 8.2 | |
directory_server | eq | 8.1 | |
directory_server | eq | 7.1 | |
directory_server | eq | 8.0 |