1 results (0.001 seconds)
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-46823 – Ubuntu Security Notice USN-5508-1
https://notcve.org/view.php?id=CVE-2021-46823
18 Jun 2022 — python-ldap before 3.4.0 is vulnerable to a denial of service when ldap.schema is used for untrusted schema definitions, because of a regular expression denial of service (ReDoS) flaw in the LDAP schema parser. By sending crafted regex input, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition. python-ldap versiones anteriores a 3.4.0, es vulnerable a una denegación de servicio cuando es usado ldap.schema para definiciones de esquemas que no son confiables... • https://exchange.xforce.ibmcloud.com/vulnerabilities/221507 • CWE-1333: Inefficient Regular Expression Complexity •