Vulnerabilities > CVE-2022-31087 - Incorrect Authorization vulnerability in multiple products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

ldap-account-manager

debian

CWE-863

NVD

Published: 2022-06-27

Updated: 2023-07-24

Summary

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host. This issue has been fixed in version 8.0. Users unable to upgrade should disallow executing PHP scripts in (/var/lib/ldap-account-manager/)tmp directory.

Vulnerable Configurations

Part	Description	Count
Application	Ldap-Account-Manager Ldap Account Manager Ldap Account Manager - Ldap Account Manager Ldap Account Manager 3.6 Ldap Account Manager Ldap Account Manager 4.2.1 Ldap Account Manager Ldap Account Manager 4.3 Ldap Account Manager Ldap Account Manager 6.3 Ldap Account Manager Ldap Account Manager 7.9.1	6
OS	Debian Debian Debian Linux 11.0	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References