Vulnerabilities > Redhat > 389 Directory Server > 1.4.2.1

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-1949 Authorization Bypass Through User-Controlled Key vulnerability in multiple products
An access control bypass vulnerability found in 389-ds-base.
network
low complexity
redhat fedoraproject CWE-639
7.5
7.5
2021-03-26 CVE-2020-35518 Information Exposure Through Discrepancy vulnerability in Redhat 389 Directory Server
When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not.
network
low complexity
redhat CWE-203
5.3
5.3