Vulnerability in Apple Mac_os_x

CVE-2019-13565

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied…

EPSS: 0.050 (91.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Public proof-of-concept exploits

References

  • cve@mitre.org (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
  • cve@mitre.org (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
  • cve@mitre.org (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
  • cve@mitre.org (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
  • cve@mitre.org (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
  • cve@mitre.org (mailing-list, x_refsource_BUGTRAQ, Mailing List, Third Party Advisory)
  • cve@mitre.org (mailing-list, x_refsource_FULLDISC, Mailing List, Third Party Advisory)
  • cve@mitre.org (Patch, Third Party Advisory, x_refsource_MISC)
  • cve@mitre.org (mailing-list, x_refsource_MLIST)
  • cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)

Frequently asked questions

What is CVE-2019-13565?
CVE-2019-13565 is a high-severity vulnerability in Apple Mac_os_x. CVSS score: 7.5/10. Published 2019-07-26.
How severe is CVE-2019-13565?
High severity. CVSS v3 base score is 7.5 out of 10.
Is CVE-2019-13565 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.