CVE-2022-0996 — Improper Authentication in Redhat 389 Directory Server

CWE-287 — Improper Authentication CWE-613 — Insufficient Session Expiration6 documents6 sources

Severity

6.5MEDIUMNVD

EPSS

0.1%

top 65.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Port389 389-ds-base Fedoraproject Fedora Redhat 389 Directory Server +1 more

Timeline

PublishedMar 23

Latest updateMar 24

Description

A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶NVDredhat/389_directory_server1.4.0.0

▶Debianport389/389-ds-base< 1.4.4.11-2+deb11u1+2

▶CVEListV5port389/389-ds-base1.4

Also affects: Fedora 34, 35, Enterprise Linux 8.0

🔴Vulnerability Details

GHSA

GHSA-w87j-439w-p9f3: A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication↗2022-03-24

▶

OSV

CVE-2022-0996: A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication↗2022-03-23

▶

CVEList

CVE-2022-0996: A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication↗2022-03-23

▶

📋Vendor Advisories

Red Hat

389-ds-base: expired password was still allowed to access the database↗2022-03-21

▶

Debian

CVE-2022-0996: 389-ds-base - A vulnerability was found in the 389 Directory Server that allows expired passwo...↗2022

▶