Unrated severityNVD Advisory· Published Mar 10, 2015· Updated May 6, 2026
CVE-2014-8105
CVE-2014-8105
Description
389 Directory Server before 1.3.2.27 and 1.3.3.x before 1.3.3.9 does not properly restrict access to the "cn=changelog" LDAP sub-tree, which allows remote attackers to obtain sensitive information from the changelog via unspecified vectors.
Affected products
7cpe:2.3:a:fedoraproject:389_directory_server:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:fedoraproject:389_directory_server:*:*:*:*:*:*:*:*range: <=1.3.2.26
- cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.8:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- directory.fedoraproject.org/docs/389ds/releases/release-1-3-2-27.htmlnvd
- directory.fedoraproject.org/docs/389ds/releases/release-1-3-3-9.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-March/153991.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-0416.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-0628.htmlnvd
News mentions
0No linked articles in our index yet.