CVE-2026-11786

1.9 LOW

A flaw was found in 389 Directory Server

Published: 2026-06-09 · Last updated: 2026-06-09

Severity and scoring

CVSS: 1.9 LOW
Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-125

Description

A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing semicolons during database import, causing an out-of-bounds read detectable under memory instrumentation.

Source: NVD

References

Related CVEs

Same CWE

CVE-2026-46532 — ESF-IDF is the Espressif Internet of Things (IOT) Development Framework (4.6 MEDIUM)
CVE-2026-45329 — ESF-IDF is the Espressif Internet of Things (IOT) Development Framework (7.1 HIGH)
CVE-2026-45160 — ESF-IDF is the Espressif Internet of Things (IOT) Development Framework (6.5 MEDIUM)
CVE-2026-46433 — lldpd is an implementation of IEEE 802.1ab (LLDP) (6.5 MEDIUM)
CVE-2026-47961 — Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to dis... (5.5 MEDIUM)