Vulnerabilities > CVE-2020-25692 - NULL Pointer Dereference vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
openldap
redhat
netapp
CWE-476
NVD
Published: 2020-12-08
Updated: 2022-10-12

Summary

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service.

Vulnerable Configurations

Part Description Count
Application
Openldap
52
Application
Netapp
1
OS
Redhat
3
OS
Netapp
1
Hardware
Netapp
1

Common Weakness Enumeration (CWE)

References