sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HFedora Project Sssd
APPFedoraproject1.15.3 – 2.3.1 (bez)Red Hat Enterprise Linux
OSRedhat8.0Red Hat Enterprise Linux Desktop
OSRedhat7.0Red Hat Enterprise Linux For IBM Z Systems
OSRedhat7.0Red Hat Enterprise Linux For Power Big Endian
OSRedhat7.0Red Hat Enterprise Linux For Power Little Endian
OSRedhat7.0Red Hat Enterprise Linux For Scientific Computing
OSRedhat7.0Red Hat Enterprise Linux Server
OSRedhat7.0Red Hat Enterprise Linux Server Aus
OSRedhat8.2Red Hat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions
OSRedhat8.18.2Red Hat Enterprise Linux Server Tus
OSRedhat8.2Red Hat Enterprise Linux Server Update Services For Sap Solutions
OSRedhat8.1Red Hat Enterprise Linux Workstation
OSRedhat7.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Referencje
Powiązane podatności
CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
CVE-2021-40438CRITICAL9.0⚠ KEVten sam produkt
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...
CVE-2019-5544CRITICAL9.8⚠ KEVten sam produkt
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the s...
CVE-2018-14667CRITICAL9.8⚠ KEVten sam produkt
The RichFaces Framework 3.X through 3.3.4 is vulnerable to Expression Language (EL) injection via the UserReso...
CVE-2016-4171CRITICAL9.8⚠ KEVten sam produkt
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbi...