CVE-2017-12173

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use this flaw to retrieve it.

References

https://access.redhat.com/errata/RHSA-2017:3379

https://access.redhat.com/errata/RHSA-2018:1877

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12173

Details

Source: MITRE

Published: 2018-07-27

Updated: 2019-10-09

Type: CWE-20

Risk Information

CVSS v2

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH

Tenable Plugins

View all (21 total)

IDNameProductFamilySeverity
127388NewStart CGSL MAIN 4.05 : sssd Vulnerability (NS-SA-2019-0132)NessusNewStart CGSL Local Security Checks
high
127143NewStart CGSL MAIN 5.04 : sssd Vulnerability (NS-SA-2019-0002)NessusNewStart CGSL Local Security Checks
high
124914EulerOS Virtualization for ARM 64 3.0.1.0 : sssd (EulerOS-SA-2019-1411)NessusHuawei Local Security Checks
high
117582EulerOS Virtualization 2.5.1 : sssd (EulerOS-SA-2018-1273)NessusHuawei Local Security Checks
high
110892Scientific Linux Security Update : sssd and ding-libs on SL6.x i386/x86_64 (20180619)NessusScientific Linux Local Security Checks
high
110703Oracle Linux 6 : ding-libs / sssd (ELSA-2018-1877)NessusOracle Linux Local Security Checks
high
110647CentOS 6 : ding-libs / sssd (CESA-2018:1877)NessusCentOS Local Security Checks
high
110602RHEL 6 : sssd and ding-libs (RHSA-2018:1877)NessusRed Hat Local Security Checks
high
105859Fedora 27 : sssd (2017-39c5f8cd7e)NessusFedora Local Security Checks
high
105749Ubuntu 16.04 LTS / 17.04 : sssd vulnerability (USN-3526-1)NessusUbuntu Local Security Checks
high
105420Amazon Linux AMI : sssd (ALAS-2017-935)NessusAmazon Linux Local Security Checks
high
105306EulerOS 2.0 SP2 : sssd (EulerOS-SA-2017-1325)NessusHuawei Local Security Checks
high
105305EulerOS 2.0 SP1 : sssd (EulerOS-SA-2017-1324)NessusHuawei Local Security Checks
high
105059CentOS 7 : sssd (CESA-2017:3379)NessusCentOS Local Security Checks
high
105032Scientific Linux Security Update : sssd on SL7.x x86_64 (20171205)NessusScientific Linux Local Security Checks
high
105017RHEL 7 : sssd (RHSA-2017:3379)NessusRed Hat Local Security Checks
high
105016Oracle Linux 7 : sssd (ELSA-2017-3379)NessusOracle Linux Local Security Checks
high
104430SUSE SLED12 / SLES12 Security Update : sssd (SUSE-SU-2017:2937-1)NessusSuSE Local Security Checks
high
104426openSUSE Security Update : sssd (openSUSE-2017-1251)NessusSuSE Local Security Checks
high
104225Fedora 25 : sssd (2017-88a1f4854d)NessusFedora Local Security Checks
high
104060Fedora 26 : sssd (2017-65b543b628)NessusFedora Local Security Checks
high