2.1
CVE-2012-2746
- EPSS 1.33%
- Veröffentlicht 03.07.2012 16:40:34
- Zuletzt bearbeitet 16.06.2026 23:42:01
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Directory Server Version <= 8.2
Redhat ≫ Directory Server Version7.1
Redhat ≫ Directory Server Version8.0
Redhat ≫ Directory Server Version8.1
Fedoraproject ≫ 389 Directory Server Version <= 1.2.11.5
Fedoraproject ≫ 389 Directory Server Version1.2.1
Fedoraproject ≫ 389 Directory Server Version1.2.2
Fedoraproject ≫ 389 Directory Server Version1.2.3
Fedoraproject ≫ 389 Directory Server Version1.2.5
Fedoraproject ≫ 389 Directory Server Version1.2.5 Updaterc1
Fedoraproject ≫ 389 Directory Server Version1.2.5 Updaterc2
Fedoraproject ≫ 389 Directory Server Version1.2.5 Updaterc3
Fedoraproject ≫ 389 Directory Server Version1.2.5 Updaterc4
Fedoraproject ≫ 389 Directory Server Version1.2.6
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updatea2
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updatea3
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updatea4
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updaterc1
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updaterc2
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updaterc3
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updaterc6
Fedoraproject ≫ 389 Directory Server Version1.2.6 Updaterc7
Fedoraproject ≫ 389 Directory Server Version1.2.6.1
Fedoraproject ≫ 389 Directory Server Version1.2.7 Updatealpha3
Fedoraproject ≫ 389 Directory Server Version1.2.7.5
Fedoraproject ≫ 389 Directory Server Version1.2.8 Updatealpha1
Fedoraproject ≫ 389 Directory Server Version1.2.8 Updatealpha2
Fedoraproject ≫ 389 Directory Server Version1.2.8 Updatealpha3
Fedoraproject ≫ 389 Directory Server Version1.2.8 Updaterc1
Fedoraproject ≫ 389 Directory Server Version1.2.8 Updaterc2
Fedoraproject ≫ 389 Directory Server Version1.2.8.1
Fedoraproject ≫ 389 Directory Server Version1.2.8.2
Fedoraproject ≫ 389 Directory Server Version1.2.8.3
Fedoraproject ≫ 389 Directory Server Version1.2.9.9
Fedoraproject ≫ 389 Directory Server Version1.2.10 Updatealpha8
Fedoraproject ≫ 389 Directory Server Version1.2.10 Updaterc1
Fedoraproject ≫ 389 Directory Server Version1.2.10.1
Fedoraproject ≫ 389 Directory Server Version1.2.10.2
Fedoraproject ≫ 389 Directory Server Version1.2.10.3
Fedoraproject ≫ 389 Directory Server Version1.2.10.4
Fedoraproject ≫ 389 Directory Server Version1.2.10.7
Fedoraproject ≫ 389 Directory Server Version1.2.11.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.33% | 0.673 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:N/AC:H/Au:S/C:P/I:N/A:N
|
http://directory.fedoraproject.org/wiki/Release_Notes
http://rhn.redhat.com/errata/RHSA-2012-0997.html
http://rhn.redhat.com/errata/RHSA-2012-1041.html
http://secunia.com/advisories/49734
http://www.securityfocus.com/bid/54153
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03772083
http://www.osvdb.org/83329
https://bugzilla.redhat.com/show_bug.cgi?id=833482
https://exchange.xforce.ibmcloud.com/vulnerabilities/76595
https://fedorahosted.org/389/ticket/365
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19241