A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
CPE | Name | Operator | Version |
---|---|---|---|
fedora | eq | 34 | |
fedora | eq | 35 | |
389_directory_server | eq | 1.4.0.0 | |
enterprise_linux | eq | 8.0 |
bugzilla.redhat.com/show_bug.cgi?id=2064769
github.com/ByteHackr/389-ds-base
lists.debian.org/debian-lts-announce/2023/04/msg00026.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QFD7CBBX3IZOSHEWL2EYKRLOEQSXCZ6/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PYT2IQJFHQWZENJJRY6EJB3XIFZGNT7F/