Description

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.

Remediation

References

CVE-2020-25710

Related Vulnerabilities

Oracle Database Server CVE-2006-0291 Vulnerability (CVE-2006-0291)

WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Scripting (6.4)

Apache Tomcat Improperly Implemented Security Check for Standard Vulnerability (CVE-2017-15706)

Moodle Improper Input Validation Vulnerability (CVE-2012-0801)

WordPress Plugin WPZOOM Portfolio Cross-Site Scripting (1.2.1)

Severity

High

Classification

CVE-2020-25710 CWE-617 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Tags

Missing Update Known Vulnerabilities