Redhat Directory Server — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Directory Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (36)
CVE-2008-2928 — CVSS 10.0 (critical): Multiple buffer overflows in the adminutil library in CGI applications in Red Hat Directory Server 7.1 before SP7 allow remote attackers to…
CVE-2008-0892 — CVSS 9.0 (critical): The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and…
CVE-2008-3283 — CVSS 7.8 (high): Multiple memory leaks in Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 and earlier…
CVE-2010-2222 — CVSS 7.5 (high): The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service…
CVE-2011-0019 — CVSS 7.5 (high): slapd (aka ns-slapd) in 389 Directory Server 1.2.7.5 (aka Red Hat Directory Server 8.2.x or dirsrv) does not properly handle simple paged…
CVE-2026-9064 — CVSS 7.5 (high): A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enforce an upper bound on the…
CVE-2008-1677 — CVSS 7.5 (high): Buffer overflow in the regular expression handler in Red Hat Directory Server 8.0 and 7.1 before SP6 allows remote attackers to cause a…
CVE-2022-1949 — CVSS 7.5 (high): An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that…
CVE-2008-0893 — CVSS 7.5 (high): Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, does not properly restrict access to CGI scripts, which…
CVE-2008-2930 — CVSS 7.1 (high): Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 allow remote attackers to cause a…
CVE-2022-2850 — CVSS 6.5 (medium): A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer…
CVE-2024-6237 — CVSS 6.5 (medium): A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a…
CVE-2026-11611 — CVSS 6.5 (medium): A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an…
CVE-2011-0532 — CVSS 6.2 (medium): The (1) backup and restore scripts, (2) main initialization script, and (3) ldap-agent script in 389 Directory Server 1.2.x (aka Red Hat…
CVE-2026-11788 — CVSS 5.9 (medium): A flaw was found in 389 Directory Server. The dereference control plugin does not check for allocation failure before using a BER…
CVE-2024-1062 — CVSS 5.5 (medium): A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in…
CVE-2023-1055 — CVSS 5.5 (medium): A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to decode the userPassword attribute instead of the…
CVE-2026-12528 — CVSS 5.4 (medium): A flaw was found in 389 Directory Server in the __aclp__normalize_acltxt() function of aclparse.c. A malformed ACI (Access Control…
CVE-2020-35518 — CVSS 5.3 (medium): When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be…
CVE-2014-3562 — CVSS 5.0 (medium): Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated…
CVE-2026-11787 — CVSS 5.0 (medium): A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without bounds checking…
CVE-2026-11791 — CVSS 5.0 (medium): A flaw was found in 389 Directory Server. During schema reload, the attr_syntax_swap_ht() function unconditionally frees attribute syntax…
CVE-2026-11789 — CVSS 4.9 (medium): A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned integer underflow when computing salt length…
CVE-2026-11790 — CVSS 4.9 (medium): A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password storage plugin does not enforce an upper bound on the iteration count…
CVE-2011-0022 — CVSS 4.7 (medium): The setup scripts in 389 Directory Server 1.2.x (aka Red Hat Directory Server 8.2.x), when multiple unprivileged instances are configured…
CVE-2008-0890 — CVSS 4.6 (medium): Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and…
CVE-2008-2929 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express and Directory…
CVE-2026-11785 — CVSS 4.3 (medium): A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial stack address…
CVE-2013-4485 — CVSS 4.0 (medium): 389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before 8.2.11-14) allows remote authenticated users to cause a denial of…
CVE-2013-2219 — CVSS 4.0 (medium): The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do not properly restrict access to entity attributes, which allows…
CVE-2010-3282 — CVSS 3.3 (low): 389 Directory Server before 1.2.7.1 (aka Red Hat Directory Server 8.2) and HP-UX Directory Server before B.08.10.03, when audit logging is…
CVE-2008-0889 — CVSS 2.1 (low): Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which…
CVE-2012-2746 — CVSS 2.1 (low): 389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), when the password of a LDAP user has been changed and…
CVE-2010-2241 — CVSS 2.1 (low): The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 before 8.2 use world-readable permissions when…
CVE-2026-11786 — CVSS 1.9 (low): A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing…
CVE-2012-2678 — CVSS 1.2 (low): 389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), after the password for a LDAP user has been changed…