A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
History

Tue, 01 Oct 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 01 Oct 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Redhat directory Server Eus
CPEs cpe:/a:redhat:directory_server_eus:12.2::el9
Vendors & Products Redhat directory Server Eus
References

Wed, 11 Sep 2024 10:45:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:enterprise_linux:8

Wed, 11 Sep 2024 10:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:directory_server:11.7::el8
References

Wed, 11 Sep 2024 04:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:directory_server:11
cpe:/o:redhat:enterprise_linux:8
cpe:/a:redhat:directory_server:11.9::el8
cpe:/a:redhat:enterprise_linux:8::appstream
References

Tue, 03 Sep 2024 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat rhel Els
CPEs cpe:/o:redhat:enterprise_linux:7 cpe:/o:redhat:rhel_els:7
Vendors & Products Redhat rhel Els
References

Wed, 21 Aug 2024 19:00:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:rhel_eus:8.8

Wed, 21 Aug 2024 12:45:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:rhel_eus:8.8::appstream
References

Mon, 12 Aug 2024 10:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:enterprise_linux:9

Mon, 12 Aug 2024 04:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:9 cpe:/a:redhat:enterprise_linux:9::appstream
cpe:/a:redhat:enterprise_linux:9::crb
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-06-18T10:01:56.714Z

Updated: 2024-11-24T17:47:42.582Z

Reserved: 2024-06-13T04:20:35.951Z

Link: CVE-2024-5953

cve-icon Vulnrichment

Updated: 2024-08-01T21:25:03.368Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-18T10:15:11.170

Modified: 2024-11-21T09:48:38.403

Link: CVE-2024-5953

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-06-13T00:00:00Z

Links: CVE-2024-5953 - Bugzilla