CVE-2010-2940

CWE-287 — Improper Authentication CWE-284 — Improper Access Control8 documents7 sources

Severity

5.1MEDIUM

EPSS

0.1%

top 70.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fedoraproject Sssd

Timeline

PublishedAug 30

Latest updateMay 17

Description

The auth_send function in providers/ldap/ldap_auth.c in System Security Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind are enabled, allows remote attackers to bypass the authentication requirements of pam_authenticate via an empty password.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

▶Debiansssd< 1.2.1-4+3

▶NVDfedoraproject/sssd1.3.0

🔴Vulnerability Details

GHSA

GHSA-x9m9-3w3m-hrf4: The auth_send function in providers/ldap/ldap_auth↗2022-05-17

▶

OSV

CVE-2010-2940: The auth_send function in providers/ldap/ldap_auth↗2010-08-30

▶

CVEList

CVE-2010-2940: The auth_send function in providers/ldap/ldap_auth↗2010-08-30

▶

📋Vendor Advisories

Red Hat

sssd: allows null password entry to authenticate against LDAP↗2010-08-24

▶

Debian

CVE-2010-2940: sssd - The auth_send function in providers/ldap/ldap_auth.c in System Security Services...↗2010

▶

💬Community

Bugzilla

CVE-2010-2940 sssd: allows null password entry to authenticate against LDAP↗2010-08-18

▶

Bugzilla

CVE-2010-2940 sssd: allows null password entry to authenticate against LDAP [fedora-all]↗2010-08-09

▶