CVE-2025-27497

Name of the Vulnerable Software and Affected Versions OpenDJ versions prior to 4.9.3

Description The issue is a denial-of-service (DoS) vulnerability that causes the server to become unresponsive to all LDAP requests without crashing or restarting. This occurs when an alias loop exists in the LDAP database and an ldapsearch request is executed with alias dereferencing set to "always" on this alias entry. The server stops responding to all future requests but can be restarted without data corruption.

Recommendations For versions prior to 4.9.3, update to version 4.9.3 to resolve the issue. As a temporary workaround, consider avoiding the use of alias dereferencing set to "always" on alias entries with potential loops until the update is applied.