CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
90.7%
Software: openldap 2.4.46
OS: ROSA Virtualization 2.1
package_evr_string: openldap-2.4.46
CVE-ID: CVE-2020-25709
BDU-ID: 2022-00231
CVE-Crit: HIGH
CVE-DESC.: A vulnerability in the slapd server implementation of the OpenLDAP LDAP protocol is related to a flaw in the use of the assert() function. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a malicious packet
CVE-STATUS: Not Relevant
CVE-REV:
CVE-ID: CVE-2020-25710
BDU-ID: 2022-00230
CVE-Crit: HIGH
CVE-DESC.: A vulnerability in the csnNormalize23() function of the OpenLDAP LDAP protocol implementation is related to a flaw in the use of the assert() function. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a malicious packet
CVE-STATUS: Not Relevant
CVE-REV:
CVE-ID: CVE-2022-29155
BDU-ID: 2022-03203
CVE-Crit: CRITICAL.
CVE-DESC.: A vulnerability in the OpenLDAP protocol implementation is associated with failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow a remote attacker to impact the confidentiality, integrity and availability of protected information through a specially crafted query
CVE-STATUS: Not relevant
CVE-REV:
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
90.7%