What the vulnerability does

01Description

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

Key dates

02Disclosure timeline

May 28, 2021 CVE published
August 3, 2024 Record updated