4
CVE-2013-2219
- EPSS 1.76%
- Veröffentlicht 31.07.2013 13:20:25
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do not properly restrict access to entity attributes, which allows remote authenticated users to obtain sensitive information via a search query for the attribute.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Fedoraproject ≫ 389 Directory Server Version-
Redhat ≫ Directory Server Version <= 8.2
Redhat ≫ Directory Server Version7.1
Redhat ≫ Directory Server Version8.0
Redhat ≫ Directory Server Version8.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.76% | 0.75 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
http://rhn.redhat.com/errata/RHSA-2013-1116.html
http://rhn.redhat.com/errata/RHSA-2013-1119.html
https://bugzilla.redhat.com/show_bug.cgi?id=979508