CVE-2021-28374Incorrect Permission Assignment in Courier-authlib

CWE-732Incorrect Permission AssignmentCWE-312Cleartext Storage of Sensitive InfoCWE-20Improper Input Validation5 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 47.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Courier-authlibDebian Linux
Timeline
PublishedMar 15
Latest updateMay 24

Description

The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a cleartext password in some configurations. In general, it includes the user's existence, uid and gids, home and/or Maildir directory, quota, and some type of password information (such as a hash).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDdebian/courier-authlib< 0.71.1-2
debiandebian/courier-authlib< courier-authlib 0.71.1-2 (bookworm)
Debiandebian/courier-authlib< 0.71.1-2+3

Also affects: Debian Linux 9.0

🔴Vulnerability Details

2
GHSA
GHSA-hcm8-3cv3-g73f: The Debian courier-authlib package before 02022-05-24
OSV
CVE-2021-28374: The Debian courier-authlib package before 02021-03-15

📋Vendor Advisories

2
Red Hat
tcmu-runner: SCSI target (LIO) write to any block on ILO backstore2021-01-13
Debian
CVE-2021-28374: courier-authlib - The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Li...2021
CVE-2021-28374 — Incorrect Permission Assignment | cvebase