📦

openldap-servers

Vendor: openldap

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 17 Total Indexed

Avg. EPSS 0.02% Exploit Prob.

Latest CVE CVE-2016-4984 Jul 17

Security Vulnerability Index

Page 1 / 2

4.7 CVSS

CVE-2016-4984

/usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the TLS certificate, which allows local users to obtain the TLS certificate by leveraging a race condition between the creation of the certificate, and the chmod to protect it.

EPSS: 0.02%

Severity: MEDIUM

Jul 17, 2017

Displaying 1 of 17 Total Entries

1 2

Total 2 Sections