CVE-2020-25710
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-25710
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
可达断言
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenLDAP 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenLDAP是美国OpenLDAP(Openldap)基金会的一个轻型目录访问协议(LDAP)的开源实现。 OpenLDAP CSN Normalization 存在安全漏洞,攻击者可利用该漏洞可以通过强制断言错误,从而触发拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | openldap | openldap 2.4.56 | - |
II. Public POCs for CVE-2020-25710
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-25710
Please Login to view more intelligence information
- https://bugzilla.redhat.com/show_bug.cgi?id=1899678x_refsource_MISC
- https://security.netapp.com/advisory/ntap-20210716-0003/x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2020-25710
Same Patch Batch · n/a · 2021-05-28 · 43 CVEs total
| CVE-2021-33620 | 6.5 MEDIUM | Squid 输入验证错误漏洞 |
| CVE-2021-20201 | spice 安全漏洞 | |
| CVE-2021-20195 | Red Hat Keycloak 输入验证错误漏洞 | |
| CVE-2020-35505 | QEMU 代码问题漏洞 | |
| CVE-2010-3843 | Ettercap 缓冲区错误漏洞 | |
| CVE-2020-35504 | QEMU 代码问题漏洞 | |
| CVE-2020-25715 | pki-core 跨站脚本漏洞 | |
| CVE-2021-3514 | 389-ds-base 代码问题漏洞 | |
| CVE-2021-33587 | css-what 安全漏洞 | |
| CVE-2021-33623 | trim-newlines 资源管理错误漏洞 | |
| CVE-2020-27826 | Red Hat Keycloak 安全漏洞 | |
| CVE-2020-35506 | QEMU 资源管理错误漏洞 | |
| CVE-2021-20236 | ZeroMQ 缓冲区错误漏洞 | |
| CVE-2021-20237 | ZeroMQ 资源管理错误漏洞 | |
| CVE-2021-20239 | Linux kernel 缓冲区错误漏洞 | |
| CVE-2021-20240 | gdk-pixbuf 数字错误漏洞 | |
| CVE-2021-20278 | Kiali 授权问题漏洞 | |
| CVE-2021-20292 | Nouveau 资源管理错误漏洞 | |
| CVE-2021-27032 | Autodesk Licensing Services 访问控制错误漏洞 | |
| CVE-2021-21734 | ZTE PON MDU 加密问题漏洞 |
Showing top 20 of 43 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM - CVE-2026-6664
PgBouncer integer overflow in PgBouncer network packet parsi - CVE-2026-8127
eladmin Users API Endpoint UserController.java checkLevel ac
Same weakness: CWE-617
- CVE-2026-41584
ZEBRA: rk Identity Point Panic in Transaction Verification - CVE-2026-20450
Qualcomm Modem MSV-6100远程拒绝服务漏洞 - CVE-2026-41485
Kyverno Controller Denial of Service via forEach Mutation Pa - CVE-2026-34067
nimiq-transaction vulnerable to panic via `HistoryTreeProof` - CVE-2026-34063
network-libp2p: Peer can crash the node by opening discovery
V. Comments for CVE-2020-25710
No comments yet