Security Advisory

CVE-2019-14824

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-11-08 14:45:46

Last updated 2025-02-13 16:27:22

Assigner redhat

State PUBLISHED

Description

A flaw was found in the deref plugin of 389-ds-base where it could use the search permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.

← Browse all CVEs View on cve.org ↗