What is CVE-2026-11786?

CVE-2026-11786 is a low-severity vulnerability, classified under Out-of-bounds Read. CVSS score: 1.9/10. Published 2026-06-09.

How severe is CVE-2026-11786?

Low severity. CVSS v3 base score is 1.9 out of 10.

CVE-2026-11786

CVE-2026-11786

A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing semicolons during database import, causing an out-of-bounds read detectable under memory instrument…

Vulnerability class: Buffer Overflow

CVSS v3 metric

CVSS v3 base score 1.9 (Low). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N.

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

secalert@redhat.com
secalert@redhat.com
secalert@redhat.com

Frequently asked questions

What is CVE-2026-11786?: CVE-2026-11786 is a low-severity vulnerability, classified under Out-of-bounds Read. CVSS score: 1.9/10. Published 2026-06-09.
How severe is CVE-2026-11786?: Low severity. CVSS v3 base score is 1.9 out of 10.