Sssd@1.9.0 Security Vulnerabilities and Issues — Sssd@1.9.0 CVE List

Lucene search

FedoraprojectSssd1.9.0

4 matches found

CVE•added 2019/12/26 9:15 p.m.•79 views

CVE-2012-3462

A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the HBAC rule processing to be ignored in the event that the access-provider is also handling the setup of the user's SELinux user context.

8.8CVSS8.5AI score0.00333EPSS

CVE•added 2013/02/24 7:55 p.m.•71 views

CVE-2013-0219

System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user's files.

3.7CVSS6.1AI score0.00064EPSS

CVE•added 2013/02/24 7:55 p.m.•62 views

CVE-2013-0220

The (1) sss_autofs_cmd_getautomntent and (2) sss_autofs_cmd_getautomntbyname function in responder/autofs/autofssrv_cmd.c and the (3) ssh_cmd_parse_request function in responder/ssh/sshsrv_cmd.c in System Security Services Daemon (SSSD) before 1.9.4 allow remote attackers to cause a denial of servi...

5CVSS6.3AI score0.01922EPSS

CVE•added 2013/03/21 4:55 p.m.•58 views

CVE-2013-0287

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.

4.9CVSS6AI score0.00464EPSS