Home

CVE-2020-25692

Description

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.215

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in IBM Security Guardium 11.1Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.2Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.0Windows
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.45+dfsg-1ubuntu1.7_i386.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.45+dfsg-1ubuntu1.7_amd64.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.49+dfsg-2ubuntu1.4_i386.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.49+dfsg-2ubuntu1.4_amd64.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.53+dfsg-1ubuntu1.1_i386.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.53+dfsg-1ubuntu1.1_amd64.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.42+dfsg-2ubuntu3.10_i386.debLinux
Lightweight Directory Access Protocol (USN-4622-1) slapd_2.4.42+dfsg-2ubuntu3.10_amd64.debLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-32bit-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-debuginfo-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) libldap-2_4-2-debuginfo-32bit-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-back-meta-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-back-meta-debuginfo-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-client-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-client-debuginfo-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-debuginfo-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-debugsource-2.4.41-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-doc-2.4.41-18.77.1.noarch.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-ppolicy-check-password-1.2-18.77.1.x86_64.rpmLinux
SUSE-SU-2020:3314-1(SUSE Linux Enterprise Server 12-SP5 ) openldap2-ppolicy-check-password-debuginfo-1.2-18.77.1.x86_64.rpmLinux
(RHSA-2021:1389) openldap security update openldap-2.4.44-23.el7_9.i686.rpmLinux
(RHSA-2021:1389) openldap security update openldap-2.4.44-23.el7_9.x86_64.rpmLinux
(RHSA-2021:1389) openldap security update openldap-clients-2.4.44-23.el7_9.x86_64.rpmLinux
(RHSA-2021:1389) openldap security update openldap-devel-2.4.44-23.el7_9.i686.rpmLinux
(RHSA-2021:1389) openldap security update openldap-devel-2.4.44-23.el7_9.x86_64.rpmLinux
(RHSA-2021:1389) openldap security update openldap-servers-2.4.44-23.el7_9.x86_64.rpmLinux
(RHSA-2021:1389) openldap security update openldap-servers-sql-2.4.44-23.el7_9.x86_64.rpmLinux
Openldap update (ELSA-2021-1389) openldap-2.4.44-23.el7_9.i686.rpmLinux
Openldap update (ELSA-2021-1389) openldap-2.4.44-23.el7_9.x86_64.rpmLinux
Openldap-clients update (ELSA-2021-1389) openldap-clients-2.4.44-23.el7_9.x86_64.rpmLinux
Openldap-devel update (ELSA-2021-1389) openldap-devel-2.4.44-23.el7_9.i686.rpmLinux
Openldap-devel update (ELSA-2021-1389) openldap-devel-2.4.44-23.el7_9.x86_64.rpmLinux
Openldap-servers update (ELSA-2021-1389) openldap-servers-2.4.44-23.el7_9.x86_64.rpmLinux
Openldap-servers-sql update (ELSA-2021-1389) openldap-servers-sql-2.4.44-23.el7_9.x86_64.rpmLinux
(CESA-2021:1389) openldap security update openldap-2.4.44-23.el7_9.x86_64.rpmLinux
(CESA-2021:1389) openldap security update openldap-clients-2.4.44-23.el7_9.x86_64.rpmLinux
(CESA-2021:1389) openldap security update openldap-devel-2.4.44-23.el7_9.x86_64.rpmLinux
(CESA-2021:1389) openldap security update openldap-servers-2.4.44-23.el7_9.x86_64.rpmLinux
(CESA-2021:1389) openldap security update openldap-servers-sql-2.4.44-23.el7_9.x86_64.rpmLinux
CVE-2020-25692NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234