Vulnerabilities > CVE-2020-25710 - Reachable Assertion vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH

Summary

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.

Vulnerable Configurations

Part Description Count
Application
Openldap
54
Application
Redhat
3
OS
Redhat
3
OS
Debian
1
OS
Fedoraproject
1

Common Weakness Enumeration (CWE)