Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.3 views

SUSE CVE-2017-12173

It was found that sssd's sysdbsearchuserbyupnres function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use this fla...

3.3CVSS6.7AI score0.01499EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.22 views

NewStart CGSL MAIN 5.04 : sssd Vulnerability (NS-SA-2019-0002)

The remote NewStart CGSL host, running version MAIN 5.04, has sssd packages installed that are affected by a vulnerability: - It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login...

8.8CVSS6.5AI score0.01499EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.42 views

NewStart CGSL MAIN 4.05 : sssd Vulnerability (NS-SA-2019-0132)

The remote NewStart CGSL host, running version MAIN 4.05, has sssd packages installed that are affected by a vulnerability: - It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login...

8.8CVSS6.5AI score0.01499EPSS
Exploits0References2
Veracode
Veracode
added 2019/01/15 9:21 a.m.23 views

Information Disclosure

sssd is vulnerable to information disclosure attacks. The vulnerability exists as it was found that sssd's sysdbsearchuserbyupnres function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash...

8.8CVSS8.1AI score0.01499EPSS
Exploits0References7Affected Software2
Amazon
Amazon
added 2017/12/20 12:0 a.m.36 views

Medium: sssd

Issue Overview: Unsanitized input when searching in local cache database It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for...

8.8CVSS6.9AI score0.01499EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.27 views

EulerOS 2.0 SP2 : sssd (EulerOS-SA-2017-1325)

According to the version of the sssd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In...

8.8CVSS6.5AI score0.01499EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.41 views

EulerOS 2.0 SP1 : sssd (EulerOS-SA-2017-1324)

According to the version of the sssd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In...

8.8CVSS6.5AI score0.01499EPSS
Exploits0References2
Rows per page
Query Builder