How severe is CVE-2025-2487?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2025-2487?

This is classified as CWE-476, which is a common weakness in software security.

CVE-2025-2487 - MEDIUM Severity | CVSS 4.9

Vulnerability Description

A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not tested and a NULL pointer is dereferenced. If a privileged user performs a ldap MODDN operation after a failed operation, it could lead to a Denial of Service (DoS) or system crash.

Related Vulnerabilities

CVE-2019-14847

MEDIUM

CVSS:4.9(Medium)

A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not pos...

CWE-4762019

CVE-2019-19269

MEDIUM

CVSS:4.9(Medium)

An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encounteri...

CWE-4762019

CVE-2020-12514

MEDIUM

CVSS:4.9(Medium)

Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd

CWE-4762020

CVE-2020-1995

MEDIUM

CVSS:4.9(Medium)

A NULL pointer dereference vulnerability in Palo Alto Networks PAN-OS allows an authenticated administrator to send a request that causes the rasmgr daemon to crash. Repeated attempts to send this req...

CWE-4762020

CVE-2023-32970

MEDIUM

CVSS:4.9(Medium)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial...

CWE-4762023

CVE-2023-41274

MEDIUM

CVSS:4.9(Medium)

CWE-4762023