Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
389 Directory Server 1.3.1.x, 1.3.2.x before 1.3.2.27, and 1.3.3.x before 1.3.3.9 stores "unhashed" passwords even when the nsslapd-unhashed-pw-switch option is set to off, which allows remote authenticated users to obtain sensitive information by reading the Changelog.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
389 Directory Server 信息泄露漏洞
Vulnerability Description
Red Hat 389 Directory Server(前称Fedora Directory Server)是美国红帽(Red Hat)公司的一款企业级的Linux目录服务器。该服务器完全支持LDAPv3规范,具有可扩展、多主复制等特点。 389 Directory Server中存在信息泄露漏洞。远程攻击者可通过读取Changelog文件利用该漏洞获取敏感信息。以下产品及版本受到影响:389 Directory Server 1.3.1.x版本,1.3.2.27之前1.3.2.x版本,1.3.3.9之
CVSS Information
N/A
Vulnerability Type
N/A