CVE-2022-31087 — Injection in Ldap Account Manager

CWE-74 — Injection CWE-863 — Incorrect Authorization3 documents3 sources

Severity

7.8HIGHNVD

EPSS

0.2%

top 59.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ldapaccountmanager LAM Ldap-account-manager Ldap Account Manager Debian Ldap-account-manager +1 more

Timeline

PublishedJun 27

Description

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host. This issue has been fixed in version 8.0. Users unable to upgrade should disallow …

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶CVEListV5ldapaccountmanager/lam< 8.0

▶debiandebian/ldap-account-manager< ldap-account-manager 8.0.1-1 (bookworm)

▶NVDldap-account-manager/ldap_account_manager< 8.0

Also affects: Debian Linux 11.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2022-31087: LDAP Account Manager (LAM) is a webfrontend for managing entries (e↗2022-06-27

▶

📋Vendor Advisories

Debian

CVE-2022-31087: ldap-account-manager - LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, gr...↗2022

▶