Medium severity4.9NVD Advisory· Published Mar 18, 2025· Updated Apr 15, 2026
CVE-2025-2487
CVE-2025-2487
Description
A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not tested and a NULL pointer is dereferenced. If a privileged user performs a ldap MODDN operation after a failed operation, it could lead to a Denial of Service (DoS) or system crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords6 versionspkg:rpm/almalinux/389-ds-basepkg:rpm/almalinux/389-ds-base-develpkg:rpm/almalinux/389-ds-base-libspkg:rpm/almalinux/389-ds-base-snmppkg:rpm/almalinux/python3-lib389pkg:rpm/opensuse/389-ds&distro=openSUSE%20Tumbleweed
< 2.5.2-9.el9_5+ 5 more
- (no CPE)range: < 2.5.2-9.el9_5
- (no CPE)range: < 2.5.2-9.el9_5
- (no CPE)range: < 2.5.2-9.el9_5
- (no CPE)range: < 2.5.2-9.el9_5
- (no CPE)range: < 2.5.2-9.el9_5
- (no CPE)range: < 3.1.2~git55.7fbd4526-1.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.