Vulnerabilities > Fedoraproject > Sssd

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
network
low complexity
fedoraproject redhat
8.8
2021-12-23 CVE-2021-3621 OS Command Injection vulnerability in multiple products
A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands.
network
low complexity
fedoraproject redhat CWE-78
8.8
2019-12-26 CVE-2012-3462 Improper Authentication vulnerability in Fedoraproject Sssd 1.9.0
A flaw was found in SSSD version 1.9.0.
network
low complexity
fedoraproject CWE-287
8.8
2019-03-25 CVE-2018-16838 Improper Privilege Management vulnerability in multiple products
A flaw was found in sssd Group Policy Objects implementation.
network
low complexity
fedoraproject redhat CWE-269
5.4
2019-01-15 CVE-2019-3811 A vulnerability was found in sssd. 5.2
2018-12-19 CVE-2018-16883 Information Exposure vulnerability in Fedoraproject Sssd
sssd versions from 1.13.0 to before 2.0.0 did not properly restrict access to the infopipe according to the "allowed_uids" configuration parameter.
local
low complexity
fedoraproject CWE-200
5.5
2018-07-27 CVE-2017-12173 Improper Input Validation vulnerability in multiple products
It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection.
network
low complexity
redhat fedoraproject CWE-20
8.8
2018-06-26 CVE-2018-10852 Information Exposure vulnerability in multiple products
The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user.
network
low complexity
debian fedoraproject redhat CWE-200
7.5