Unrated severityNVD Advisory· Published Jul 31, 2013· Updated Apr 29, 2026

CVE-2013-2219

Description

The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do not properly restrict access to entity attributes, which allows remote authenticated users to obtain sensitive information via a search query for the attribute.

Affected products

Fedoraproject/389 Directory Server
cpe:2.3:a:fedoraproject:389_directory_server:-:*:*:*:*:*:*:*
Red Hat/Directory Server4 versions
cpe:2.3:a:redhat:directory_server:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:redhat:directory_server:*:*:*:*:*:*:*:*range: <=8.2
- cpe:2.3:a:redhat:directory_server:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:directory_server:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:directory_server:8.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rhn.redhat.com/errata/RHSA-2013-1116.htmlnvd
rhn.redhat.com/errata/RHSA-2013-1119.htmlnvd
bugzilla.redhat.com/show_bug.cginvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000