CVE-2023-1055Sensitive Information Exposure in Fedora

CWE-200Sensitive Information ExposureCWE-295Improper Certificate Validation6 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 80.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Port389 389-ds-baseFedoraproject FedoraRedhat Directory Server
Timeline
PublishedFeb 27
Latest updateFeb 28

Description

A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to decode the userPassword attribute instead of the userCertificate attribute which could lead into sensitive information leaked. An attacker with a local account where the cockpit-389-ds is running can list the processes and display the hashed passwords. The highest threat from this vulnerability is to data confidentiality.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

Debianport389/389-ds-base< 2.3.4+dfsg1-1
NVDredhat/directory_server4 versions+3

Also affects: Fedora 36, 37, 38

🔴Vulnerability Details

3
GHSA
GHSA-w8wv-xqxw-7vgx: A flaw was found in RHDS 11 and RHDS 122023-02-28
CVEList
CVE-2023-1055: A flaw was found in RHDS 11 and RHDS 122023-02-27
OSV
CVE-2023-1055: A flaw was found in RHDS 11 and RHDS 122023-02-27

📋Vendor Advisories

2
Red Hat
RHDS: LDAP browser tries to decode userPassword instead of userCertificate attribute2023-02-27
Debian
CVE-2023-1055: 389-ds-base - A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to de...2023
CVE-2023-1055 — Sensitive Information Exposure | cvebase