The slapi-nis plug-in before 0.54.2 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request for a (1) group with a large number of members or (2) user that belongs to a large number of groups.
Max CVSS
7.8
EPSS Score
2.35%
Published
2015-03-30
Updated
2023-02-13
1 vulnerabilities found