Home

CVE-2020-12243

Description

In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
10.757

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in MacOS Catalina 10.15.6Mac
Multiple vulnerabilities are fixed in macOS Catalina 10.15.6 Combo UpdateMac
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) libldap-2_4-2-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) libldap-2_4-2-32bit-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-32bit-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) libldap-2_4-2-debuginfo-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) libldap-2_4-2-debuginfo-32bit-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-debuginfo-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-debuginfo-32bit-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-back-meta-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-back-meta-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-back-meta-debuginfo-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-back-meta-debuginfo-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-client-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-client-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-client-debuginfo-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-client-debuginfo-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-debuginfo-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-debuginfo-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-debugsource-2.4.41-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-doc-2.4.41-18.68.1.noarch.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-debugsource-2.4.41-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-doc-2.4.41-18.68.1.noarch_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-ppolicy-check-password-1.2-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-ppolicy-check-password-1.2-18.68.1.x86_64_SP5.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP4 ) openldap2-ppolicy-check-password-debuginfo-1.2-18.68.1.x86_64.rpmLinux
SUSE-SU-2020:1193-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-ppolicy-check-password-debuginfo-1.2-18.68.1.x86_64_SP5.rpmLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.42+dfsg-2ubuntu3.8_i386.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.42+dfsg-2ubuntu3.8_amd64.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.45+dfsg-1ubuntu1.5_i386.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.45+dfsg-1ubuntu1.5_amd64.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.48+dfsg-1ubuntu1.1_i386.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.48+dfsg-1ubuntu1.1_amd64.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.49+dfsg-2ubuntu1.2_i386.debLinux
Lightweight Directory Access Protocol (USN-4352-1) slapd_2.4.49+dfsg-2ubuntu1.2_amd64.debLinux
(RHSA-2020:4041) openldap security update openldap-2.4.44-22.el7.i686.rpmLinux
(RHSA-2020:4041) openldap security update openldap-2.4.44-22.el7.x86_64.rpmLinux
(RHSA-2020:4041) openldap security update openldap-clients-2.4.44-22.el7.x86_64.rpmLinux
(RHSA-2020:4041) openldap security update openldap-devel-2.4.44-22.el7.i686.rpmLinux
(RHSA-2020:4041) openldap security update openldap-devel-2.4.44-22.el7.x86_64.rpmLinux
(RHSA-2020:4041) openldap security update openldap-servers-2.4.44-22.el7.x86_64.rpmLinux
(RHSA-2020:4041) openldap security update openldap-servers-sql-2.4.44-22.el7.x86_64.rpmLinux
Uncontrolled Recursion Vulnerability (CVE-2020-12243)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-602673MacOS Catalina 10.15.7 - Auto Reboot
PATCH-602674macOS Catalina 10.15.7 Combo Update - Auto Reboot

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234