3 matches found
CVE-2026-14476
A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...
CLSA-2025-1751143797 sssd: Fix of CVE-2023-3758
CVE-2023-3758: fix race condition in adgpo...
CLSA-2025-1748967240 sssd: Fix of CVE-2023-3758
CVE-2023-3758: fix race condition in adgpo...