VDB

DEBIAN-CVE-2019-10224

DEBIAN-CVE-2019-10224 PUBLISHED CVSS 4.599999904632568 MEDIUM

A flaw has been found in 389-ds-base versions 1.4.x.x before 1.4.1.3. When executed in verbose mode, the dscreate and dsconf commands may display sensitive information, such as the Directory Manager password. An attacker, able to see the screen or record the terminal standard error output, could use this flaw to gain sensitive information.

Risk Scores

CVSS 3.1
4.599999904632568
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
Debian:13389-ds-base0, 0, 0
Debian:12389-ds-base0, 0, 0
Debian:11389-ds-base0, 0, 0

Timeline

  • Nov 25, 2019 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›