CVE-2024-5953
Published: Jun 18, 2024
Modified: Feb 25, 2026
CVSS v3.1
5.7
Description
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
| Vendor | Product | Versions |
|---|---|---|
Unknown | 389-ds-base | All versions |
Red Hat | Red Hat Directory Server 11.5 E4S for RHEL 8 | unaffected 8060020250210084424.0ca98e7e - < * |
Red Hat | Red Hat Directory Server 11.7 for RHEL 8 | unaffected 8080020240909040333.f969626e - < * |
Red Hat | Red Hat Directory Server 11.9 for RHEL 8 | unaffected 8100020240902112955.37ed7c03 - < * |
Red Hat | Red Hat Directory Server 12.2 EUS for RHEL 9 | unaffected 9020020240916150035.1674d574 - < * |
Red Hat | Red Hat Directory Server 12.4 for RHEL 9 | unaffected 9040020240723122852.1674d574 - < * |
Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | unaffected 0:1.3.11.1-6.el7_9 - < * |
Red Hat | Red Hat Enterprise Linux 8 | unaffected 8100020240910065753.25e700aa - < * |
Red Hat | Red Hat Enterprise Linux 8.8 Extended Update Support | unaffected 8080020240807050952.6dbb3803 - < * |
Red Hat | Red Hat Enterprise Linux 9 | unaffected 0:2.4.5-9.el9_4 - < * |
Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support | unaffected 0:2.2.4-9.el9_2 - < * |
Red Hat | Red Hat Enterprise Linux 10 | All versions |
Red Hat | Red Hat Enterprise Linux 6 | All versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now