Bottom line: Authenticated attackers can execute arbitrary code in RHEL 389-ds-base and disrupt the service.
A vulnerability in 389-ds-base has been identified in Red Hat Enterprise Linux that enables authenticated attackers to execute remote code and launch denial of service attacks. CERT-Bund rates the severity as medium-high.
The vulnerability affects the 389-ds-base component in Red Hat Enterprise Linux. It enables authenticated attackers to execute arbitrary code and potentially carry out denial of service attacks.
CERT-Bund classifies the vulnerability as medium priority. This means: the exploitation risk is real, but it requires an initial foothold — the attacker must be able to authenticate. For environments where 389-ds-base is deployed as an LDAP directory service, this represents a substantial risk, particularly if internal users or compromised service accounts exist.
CISOs should identify affected RHEL systems and, where necessary, apply security updates promptly. Prioritizing patch campaigns is recommended for directory services in critical environments.
Source: wid.cert-bund.de · Published 19 June 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrasing and classification by Lumi News Pipeline v1.7.1.