What is CVE-2022-29155?

CVE-2022-29155 is a vulnerability in N/a. Published 2022-05-04.

Is CVE-2022-29155 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-29155

In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. This can occur during an LDAP search operation when the sea…

EPSS: 0.699 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

bugs.openldap.org/show_bug.cgi (x_refsource_MISC)
DSA-5140 (vendor-advisory, x_refsource_DEBIAN)
[debian-lts-announce] 20220524 [SECURITY] [DLA 3017-1] openldap security update (mailing-list, x_refsource_MLIST)
security.netapp.com/advisory/ntap-20220609-0007/ (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2022-29155?: CVE-2022-29155 is a vulnerability in N/a. Published 2022-05-04.
Is CVE-2022-29155 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.