vulnerability

Red Hat JBoss EAP: CVE-2018-5729: NULL Pointer Dereference

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	Mar 1, 2018	Sep 19, 2024	Nov 26, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

Mar 1, 2018

Added

Sep 19, 2024

Modified

Nov 26, 2025

Description

MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.

Solution

red-hat-jboss-eap-upgrade-latest

References

CWE-476
CVE-2018-5729
https://attackerkb.com/topics/CVE-2018-5729
URL-https://access.redhat.com/security/cve/CVE-2018-5729
URL-https://bugzilla.redhat.com/show_bug.cgi?id=1551083

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today