CVE-2020-35518 — Sensitive Information Exposure in 389-ds-base

CWE-200 — Sensitive Information Exposure CWE-203 — Observable Discrepancy8 documents7 sources

Severity

5.3MEDIUMNVD

EPSS

0.8%

top 25.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Port389 389-ds-base Redhat 389 Directory Server Redhat Directory Server +1 more

Timeline

PublishedMar 26

Latest updateJul 18

Description

When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be used by an unauthenticated attacker to check the existence of an entry in the LDAP database.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages5 packages

▶Debianport389/389-ds-base< 1.4.4.10-1+2

▶Ubuntuport389/389-ds-base< 1.3.4.9-1ubuntu0.1~esm1+2

▶CVEListV5port389/389-ds-base389-ds-base 2.0.3, 389-ds-base 1.4.4.13, 389-ds-base 1.4.3.19

▶NVDredhat/389_directory_server1.4.4.0 — 1.4.4.13+2

▶NVDredhat/directory_server11.0

Also affects: Enterprise Linux 7.0, 8.0

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

389-ds-base vulnerabilities↗2022-07-18

▶

GHSA

GHSA-vg4h-9m5m-rchq: When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not↗2022-05-24

▶

OSV

CVE-2020-35518: When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not↗2021-03-26

▶

CVEList

CVE-2020-35518: When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not↗2021-03-26

▶

📋Vendor Advisories

Ubuntu

389 Directory Server vulnerabilities↗2022-07-18

▶

Red Hat

389-ds-base: information disclosure during the binding of a DN↗2020-12-07

▶

Debian

CVE-2020-35518: 389-ds-base - When binding against a DN during authentication, the reply from 389-ds-base will...↗2020

▶