CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-3480 – slapi-nis: NULL dereference (DoS) with specially crafted Binding DN
https://notcve.org/view.php?id=CVE-2021-3480
A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is to system availability. Se encontró un fallo en slapi-nis en versiones anteriores a 0.56.7. Una desreferencia de puntero NULL durante el análisis del Binding DN, podría permitir a un atacante no autenticado bloquear el servidor de directorio 389-ds-base. • https://bugzilla.redhat.com/show_bug.cgi?id=1944640 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GVQCDRQRFHXVR3Z3FQYM3UMC7QZUDDRJ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MXMOMPTZTGOVFOZUUNXHOVCAYIPST74W https://access.redhat.com/security/cve/CVE-2021-3480 • CWE-476: NULL Pointer Dereference •