Redhat 389 Directory Server — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat 389 Directory Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (19)
CVE-2010-2222 — CVSS 7.5 (high): The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service…
CVE-2022-1949 — CVSS 7.5 (high): An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that…
CVE-2026-9064 — CVSS 7.5 (high): A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enforce an upper bound on the…
CVE-2018-10935 — CVSS 6.5 (medium): A flaw was found in the 389 Directory Server that allows users to cause a crash in the LDAP server using ldapsearch with server side sort.
CVE-2022-0996 — CVSS 6.5 (medium): A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
CVE-2024-6237 — CVSS 6.5 (medium): A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a…
CVE-2026-11611 — CVSS 6.5 (medium): A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an…
CVE-2021-3514 — CVSS 6.5 (medium): When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted…
CVE-2026-11788 — CVSS 5.9 (medium): A flaw was found in 389 Directory Server. The dereference control plugin does not check for allocation failure before using a BER…
CVE-2024-1062 — CVSS 5.5 (medium): A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in…
CVE-2026-12528 — CVSS 5.4 (medium): A flaw was found in 389 Directory Server in the __aclp__normalize_acltxt() function of aclparse.c. A malformed ACI (Access Control…
CVE-2020-35518 — CVSS 5.3 (medium): When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be…
CVE-2026-11791 — CVSS 5.0 (medium): A flaw was found in 389 Directory Server. During schema reload, the attr_syntax_swap_ht() function unconditionally frees attribute syntax…
CVE-2026-11787 — CVSS 5.0 (medium): A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without bounds checking…
CVE-2026-11790 — CVSS 4.9 (medium): A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password storage plugin does not enforce an upper bound on the iteration count…
CVE-2026-11793 — CVSS 4.9 (medium): A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix() function in pw.c copies an attacker-controlled algorithm…
CVE-2026-11789 — CVSS 4.9 (medium): A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned integer underflow when computing salt length…
CVE-2026-11785 — CVSS 4.3 (medium): A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial stack address…
CVE-2026-11786 — CVSS 1.9 (low): A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing…