Vulnerabilities > CVE-2020-36223 - Double Free vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
openldap
debian
apple
CWE-415

Summary

A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read).

Vulnerable Configurations

Part Description Count
Application
Openldap
56
OS
Debian
2
OS
Apple
30

Common Weakness Enumeration (CWE)

References