Buy Hosting

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Splunk security advisory 15 January 2025: Regular Expression Denial of Service (ReDoS) in Splunk Supporting Add-on for Active Directory (SA-ldapsearch)

2 Posts 2 Posters 3 Views

S This user is from outside of this forum
S This user is from outside of this forum
Not a Goat 🦝
wrote last edited by

#1

Splunk security advisory 15 January 2025: Regular Expression Denial of Service (ReDoS) in Splunk Supporting Add-on for Active Directory (SA-ldapsearch)
CVE-2025-0367 (6.5 medium) In versions 3.1.0 and lower of the Splunk Supporting Add-on for Active Directory, also known as “SA-ldapsearch”, a vulnerable regular expression pattern could lead to a Regular Expression Denial of Service (ReDoS) attack.
No mention of exploitation
#splunk #vulnerability #CVE_2025_0367 #cve #infosec #cybersecurity
C 1 Reply Last reply

0
C This user is from outside of this forum
C This user is from outside of this forum
CatSalad🐈🥗 (D.Burch) :blobcatrainbow:
replied to Not a Goat 🦝 last edited by

#2

@screaminggoat TIL that RegEx DoS has its own initialism.
1 Reply Last reply

0
P [email protected] shared this topic

Copyright © 2025 NodeBB | Contributors