Medium severity5.7NVD Advisory· Published Jun 18, 2024· Updated Jun 17, 2026
CVE-2024-5953
CVE-2024-5953
Description
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22- osv-coords21 versionspkg:rpm/almalinux/389-ds-basepkg:rpm/almalinux/389-ds-base-develpkg:rpm/almalinux/389-ds-base-legacy-toolspkg:rpm/almalinux/389-ds-base-libspkg:rpm/almalinux/389-ds-base-snmppkg:rpm/almalinux/python3-lib389pkg:rpm/opensuse/389-ds&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/389-ds&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/389-ds&distro=openSUSE%20Tumbleweedpkg:rpm/suse/389-ds&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/389-ds&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/389-ds&distro=SUSE%20Manager%20Server%204.3
< 2.4.5-9.el9_4+ 20 more
- (no CPE)range: < 2.4.5-9.el9_4
- (no CPE)range: < 2.4.5-9.el9_4
- (no CPE)range: < 1.4.3.39-8.module_el8.10.0+3891+cbd883bf
- (no CPE)range: < 2.4.5-9.el9_4
- (no CPE)range: < 1.4.3.39-8.module_el8.10.0+3891+cbd883bf
- (no CPE)range: < 2.4.5-9.el9_4
- (no CPE)range: < 2.2.10~git2.345056d3-150500.3.21.1
- (no CPE)range: < 2.2.10~git2.345056d3-150600.8.7.2
- (no CPE)range: < 3.1.1~git0.aef1668-1.1
- (no CPE)range: < 1.4.4.20~git3.e7ac6d87-150300.3.35.1
- (no CPE)range: < 1.4.4.20~git3.e7ac6d87-150300.3.35.1
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
- (no CPE)range: < 2.2.10~git2.345056d3-150500.3.21.1
- (no CPE)range: < 2.2.10~git2.345056d3-150600.8.7.2
- (no CPE)range: < 1.4.4.20~git3.e7ac6d87-150300.3.35.1
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
- (no CPE)range: < 1.4.4.20~git3.e7ac6d87-150300.3.35.1
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
- (no CPE)range: < 2.0.20~git9.5e2d637c-150400.3.42.3
Patches
Vulnerability mechanics
References
13- access.redhat.com/errata/RHSA-2024:4633nvd
- access.redhat.com/errata/RHSA-2024:4997nvd
- access.redhat.com/errata/RHSA-2024:5192nvd
- access.redhat.com/errata/RHSA-2024:5690nvd
- access.redhat.com/errata/RHSA-2024:6153nvd
- access.redhat.com/errata/RHSA-2024:6568nvd
- access.redhat.com/errata/RHSA-2024:6569nvd
- access.redhat.com/errata/RHSA-2024:6576nvd
- access.redhat.com/errata/RHSA-2024:7458nvd
- access.redhat.com/errata/RHSA-2025:1632nvd
- access.redhat.com/security/cve/CVE-2024-5953nvd
- bugzilla.redhat.com/show_bug.cginvd
- lists.debian.org/debian-lts-announce/2025/01/msg00015.htmlnvd
News mentions
0No linked articles in our index yet.