Untriaged
Permalink
CVE-2024-6237
5.3 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): LOW
389-ds-base: unauthenticated user can trigger a dos by sending a specific extended search request
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.
References
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry
- RHBZ#2293579 issue-tracking x_refsource_REDHAT
- https://github.com/389ds/389-ds-base/issues/5989
- RHBZ#2293579 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/389ds/389-ds-base/issues/5989 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-6237 x_refsource_REDHAT vdb-entry x_transferred
Affected products
389-ds-base
- <2.4.5
- *
redhat-ds:12
- *
389-ds:1.4/389-ds-base
redhat-ds:11/389-ds-base
redhat-ds:12/389-ds-base
Matching in nixpkgs
pkgs._389-ds-base
Enterprise-class Open Source LDAP server for Linux
-
nixos-unstable -
- nixpkgs-unstable 3.1.3
Package maintainers
-
@ners ners <ners@gmx.ch>