CVE-2013-2219

The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do not properly restrict access to entity attributes, which allows remote authenticated users to obtain sensitive information via a search query for the attribute.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:directory_server:*:*:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:8.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:8.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:-:*:*:*:*:*:*:*

Information

Published : 2013-07-31 06:20

Updated : 2017-11-17 18:29


NVD link : CVE-2013-2219

Mitre link : CVE-2013-2219


JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa

Products Affected

fedoraproject

  • 389_directory_server

redhat

  • directory_server