CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-46823

python-ldap before 3.4.0 is vulnerable to a denial of service when ldap.schema is used for untrusted schema definitions, because of a regular expression denial of service (ReDoS) flaw in the LDAP schema parser. By sending crafted regex input, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.8%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2021-46823

Python-Ldap » Python-Ldap » Version: 2.3.0

cpe:2.3:a:python-ldap:python-ldap:2.3.0
Python-Ldap » Python-Ldap » Version: 2.3.10

cpe:2.3:a:python-ldap:python-ldap:2.3.10
Python-Ldap » Python-Ldap » Version: 2.3.11

cpe:2.3:a:python-ldap:python-ldap:2.3.11
Python-Ldap » Python-Ldap » Version: 2.3.13

cpe:2.3:a:python-ldap:python-ldap:2.3.13
Python-Ldap » Python-Ldap » Version: 2.3.3

cpe:2.3:a:python-ldap:python-ldap:2.3.3
Python-Ldap » Python-Ldap » Version: 2.3.4

cpe:2.3:a:python-ldap:python-ldap:2.3.4
Python-Ldap » Python-Ldap » Version: 2.3.7

cpe:2.3:a:python-ldap:python-ldap:2.3.7
Python-Ldap » Python-Ldap » Version: 2.3.8

cpe:2.3:a:python-ldap:python-ldap:2.3.8
Python-Ldap » Python-Ldap » Version: 2.3.9

cpe:2.3:a:python-ldap:python-ldap:2.3.9
Python-Ldap » Python-Ldap » Version: 2.4.10

cpe:2.3:a:python-ldap:python-ldap:2.4.10
Python-Ldap » Python-Ldap » Version: 2.4.12

cpe:2.3:a:python-ldap:python-ldap:2.4.12
Python-Ldap » Python-Ldap » Version: 2.4.13

cpe:2.3:a:python-ldap:python-ldap:2.4.13
Python-Ldap » Python-Ldap » Version: 2.4.20

cpe:2.3:a:python-ldap:python-ldap:2.4.20
Python-Ldap » Python-Ldap » Version: 2.4.21

cpe:2.3:a:python-ldap:python-ldap:2.4.21
Python-Ldap » Python-Ldap » Version: 2.4.23

cpe:2.3:a:python-ldap:python-ldap:2.4.23
Python-Ldap » Python-Ldap » Version: 2.4.26

cpe:2.3:a:python-ldap:python-ldap:2.4.26
Python-Ldap » Python-Ldap » Version: 2.4.27

cpe:2.3:a:python-ldap:python-ldap:2.4.27
Python-Ldap » Python-Ldap » Version: 2.4.28

cpe:2.3:a:python-ldap:python-ldap:2.4.28
Python-Ldap » Python-Ldap » Version: 2.4.29

cpe:2.3:a:python-ldap:python-ldap:2.4.29
Python-Ldap » Python-Ldap » Version: 2.4.30

cpe:2.3:a:python-ldap:python-ldap:2.4.30
Python-Ldap » Python-Ldap » Version: 2.4.31

cpe:2.3:a:python-ldap:python-ldap:2.4.31
Python-Ldap » Python-Ldap » Version: 2.4.32

cpe:2.3:a:python-ldap:python-ldap:2.4.32
Python-Ldap » Python-Ldap » Version: 2.4.33

cpe:2.3:a:python-ldap:python-ldap:2.4.33
Python-Ldap » Python-Ldap » Version: 2.4.35

cpe:2.3:a:python-ldap:python-ldap:2.4.35
Python-Ldap » Python-Ldap » Version: 2.4.36

cpe:2.3:a:python-ldap:python-ldap:2.4.36
Python-Ldap » Python-Ldap » Version: 2.4.37

cpe:2.3:a:python-ldap:python-ldap:2.4.37
Python-Ldap » Python-Ldap » Version: 2.4.38

cpe:2.3:a:python-ldap:python-ldap:2.4.38
Python-Ldap » Python-Ldap » Version: 2.4.39

cpe:2.3:a:python-ldap:python-ldap:2.4.39
Python-Ldap » Python-Ldap » Version: 2.4.4

cpe:2.3:a:python-ldap:python-ldap:2.4.4
Python-Ldap » Python-Ldap » Version: 2.4.40

cpe:2.3:a:python-ldap:python-ldap:2.4.40
Python-Ldap » Python-Ldap » Version: 2.4.41

cpe:2.3:a:python-ldap:python-ldap:2.4.41
Python-Ldap » Python-Ldap » Version: 2.4.42

cpe:2.3:a:python-ldap:python-ldap:2.4.42
Python-Ldap » Python-Ldap » Version: 2.4.43

cpe:2.3:a:python-ldap:python-ldap:2.4.43
Python-Ldap » Python-Ldap » Version: 2.4.44

cpe:2.3:a:python-ldap:python-ldap:2.4.44
Python-Ldap » Python-Ldap » Version: 2.4.45

cpe:2.3:a:python-ldap:python-ldap:2.4.45
Python-Ldap » Python-Ldap » Version: 2.4.6

cpe:2.3:a:python-ldap:python-ldap:2.4.6
Python-Ldap » Python-Ldap » Version: 2.4.7

cpe:2.3:a:python-ldap:python-ldap:2.4.7
Python-Ldap » Python-Ldap » Version: 2.4.9

cpe:2.3:a:python-ldap:python-ldap:2.4.9
Python-Ldap » Python-Ldap » Version: 2.5.0

cpe:2.3:a:python-ldap:python-ldap:2.5.0
Python-Ldap » Python-Ldap » Version: 2.5.1

cpe:2.3:a:python-ldap:python-ldap:2.5.1
Python-Ldap » Python-Ldap » Version: 2.5.2

cpe:2.3:a:python-ldap:python-ldap:2.5.2
Python-Ldap » Python-Ldap » Version: 3.0.0

cpe:2.3:a:python-ldap:python-ldap:3.0.0
Python-Ldap » Python-Ldap » Version: 3.1.0

cpe:2.3:a:python-ldap:python-ldap:3.1.0
Python-Ldap » Python-Ldap » Version: 3.2.0

cpe:2.3:a:python-ldap:python-ldap:3.2.0
Python-Ldap » Python-Ldap » Version: 3.3.0

cpe:2.3:a:python-ldap:python-ldap:3.3.0
Python-Ldap » Python-Ldap » Version: 3.3.1

cpe:2.3:a:python-ldap:python-ldap:3.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-46823

Products

Pricing

Contact Us