CVE-2022-1949

An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an access control bypass. This may allow any remote unauthenticated user to issue a filter that allows searching for database items they do not have access to, including but not limited to potentially userPassword hashes and other sensitive data.

Published: Jun 2, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-1949
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
redhat / enterprise_linux	8.0	8.0.x
redhat / directory_server	11.0	11.0.x
redhat / enterprise_linux	9.0	9.0.x
redhat / directory_server	12.0	12.0.x
fedoraproject / fedora	34	34.x
fedoraproject / fedora	35	35.x
fedoraproject / fedora	36	36.x
redhat / 389_directory_server	1.3.0.0	2.0.0.x

https://bugzilla.redhat.com/show_bug.cgi?id=2091781

Vulnerability Database

289,599

CVE-2022-1949