Vulnerabilities > CVE-2020-36221 - Integer Underflow (Wrap or Wraparound) vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
openldap
debian
apple
CWE-191

Summary

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck).

Vulnerable Configurations

Part Description Count
Application
Openldap
56
OS
Debian
2
OS
Apple
30

Common Weakness Enumeration (CWE)

References