csaf_certbund - WID-SEC-W-2023-1128

WID-SEC-W-2023-1128

Vulnerability from csaf_certbund

Published

2019-07-28 22:00

Modified

2024-10-14 22:00

Summary

OpenLDAP: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

OpenLDAP ist eine frei verfügbare Implementierung des Verzeichnisdienstes LDAP.

Angriff

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in OpenLDAP ausnutzen, um Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme

- Linux - UNIX - Windows

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         text: "mittel",
      },
      category: "csaf_base",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "de-DE",
      notes: [
         {
            category: "legal_disclaimer",
            text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.",
         },
         {
            category: "description",
            text: "OpenLDAP ist eine frei verfügbare Implementierung des Verzeichnisdienstes LDAP.",
            title: "Produktbeschreibung",
         },
         {
            category: "summary",
            text: "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in OpenLDAP ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
            title: "Angriff",
         },
         {
            category: "general",
            text: "- Linux\n- UNIX\n- Windows",
            title: "Betroffene Betriebssysteme",
         },
      ],
      publisher: {
         category: "other",
         contact_details: "csaf-provider@cert-bund.de",
         name: "Bundesamt für Sicherheit in der Informationstechnik",
         namespace: "https://www.bsi.bund.de",
      },
      references: [
         {
            category: "self",
            summary: "WID-SEC-W-2023-1128 - CSAF Version",
            url: "https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2023-1128.json",
         },
         {
            category: "self",
            summary: "WID-SEC-2023-1128 - Portal Version",
            url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1128",
         },
         {
            category: "external",
            summary: "OpenLDAP Announce vom 2019-07-28",
            url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
         },
         {
            category: "external",
            summary: "OpenLDAP Announce vom 2019-07-28",
            url: "https://www.openldap.org/its/?findid=9038",
         },
         {
            category: "external",
            summary: "OpenLDAP Announce vom 2019-07-28",
            url: "https://www.openldap.org/its/?findid=9052",
         },
         {
            category: "external",
            summary: "Ubuntu Security Notice USN-4078-1 vom 2019-07-31",
            url: "https://usn.ubuntu.com/4078-1/",
         },
         {
            category: "external",
            summary: "Ubuntu Security Notice USN-4078-2 vom 2019-08-19",
            url: "https://usn.ubuntu.com/4078-2/",
         },
         {
            category: "external",
            summary: "SUSE Security Update SUSE-SU-2019:2390-1 vom 2019-09-18",
            url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192390-1.html",
         },
         {
            category: "external",
            summary: "SUSE Security Update SUSE-SU-2019:2395-1 vom 2019-09-18",
            url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192395-1.html",
         },
         {
            category: "external",
            summary: "SUSE Security Update SUSE-SU-2020:14353-1 vom 2020-04-30",
            url: "https://www.suse.com/support/update/announcement/2020/suse-su-202014353-1.html",
         },
         {
            category: "external",
            summary: "SUSE Security Update SUSE-SU-2020:1210-1 vom 2020-05-15",
            url: "https://www.suse.com/support/update/announcement/2020/suse-su-20201210-1.html",
         },
         {
            category: "external",
            summary: "Juniper Security Advisory JSA11088 vom 2021-01-13",
            url: "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA11088",
         },
         {
            category: "external",
            summary: "Amazon Linux Security Advisory ALAS-2023-2033 vom 2023-05-03",
            url: "https://alas.aws.amazon.com/AL2/ALAS-2023-2033.html",
         },
         {
            category: "external",
            summary: "Amazon Linux Security Advisory ALAS-2023-1741 vom 2023-05-04",
            url: "https://alas.aws.amazon.com/ALAS-2023-1741.html",
         },
         {
            category: "external",
            summary: "Splunk Security Advisory SVD-2024-1012 vom 2024-10-14",
            url: "https://advisory.splunk.com//advisories/SVD-2024-1012",
         },
      ],
      source_lang: "en-US",
      title: "OpenLDAP: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen",
      tracking: {
         current_release_date: "2024-10-14T22:00:00.000+00:00",
         generator: {
            date: "2024-10-15T08:16:05.360+00:00",
            engine: {
               name: "BSI-WID",
               version: "1.3.8",
            },
         },
         id: "WID-SEC-W-2023-1128",
         initial_release_date: "2019-07-28T22:00:00.000+00:00",
         revision_history: [
            {
               date: "2019-07-28T22:00:00.000+00:00",
               number: "1",
               summary: "Initiale Fassung",
            },
            {
               date: "2019-07-30T22:00:00.000+00:00",
               number: "2",
               summary: "Neue Updates von Ubuntu aufgenommen",
            },
            {
               date: "2019-08-19T22:00:00.000+00:00",
               number: "3",
               summary: "Neue Updates von Ubuntu aufgenommen",
            },
            {
               date: "2019-09-17T22:00:00.000+00:00",
               number: "4",
               summary: "Neue Updates von SUSE aufgenommen",
            },
            {
               date: "2019-09-18T22:00:00.000+00:00",
               number: "5",
               summary: "Neue Updates von SUSE aufgenommen",
            },
            {
               date: "2020-04-29T22:00:00.000+00:00",
               number: "6",
               summary: "Neue Updates von SUSE aufgenommen",
            },
            {
               date: "2020-05-14T22:00:00.000+00:00",
               number: "7",
               summary: "Neue Updates von SUSE aufgenommen",
            },
            {
               date: "2021-01-13T23:00:00.000+00:00",
               number: "8",
               summary: "Neue Updates von Juniper aufgenommen",
            },
            {
               date: "2023-05-02T22:00:00.000+00:00",
               number: "9",
               summary: "Neue Updates von Amazon aufgenommen",
            },
            {
               date: "2023-05-04T22:00:00.000+00:00",
               number: "10",
               summary: "Neue Updates von Amazon aufgenommen",
            },
            {
               date: "2024-10-14T22:00:00.000+00:00",
               number: "11",
               summary: "Neue Updates von Splunk-SVD aufgenommen",
            },
         ],
         status: "final",
         version: "11",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "Amazon Linux 2",
                  product: {
                     name: "Amazon Linux 2",
                     product_id: "398363",
                     product_identification_helper: {
                        cpe: "cpe:/o:amazon:linux_2:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "Amazon",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "Juniper JUNOS",
                  product: {
                     name: "Juniper JUNOS",
                     product_id: "5930",
                     product_identification_helper: {
                        cpe: "cpe:/o:juniper:junos:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "Juniper",
         },
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<2.4.48",
                        product: {
                           name: "Open Source OpenLDAP <2.4.48",
                           product_id: "T014729",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.4.48",
                        product: {
                           name: "Open Source OpenLDAP 2.4.48",
                           product_id: "T014729-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:openldap:openldap:2.4.48",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "OpenLDAP",
               },
            ],
            category: "vendor",
            name: "Open Source",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "SUSE Linux",
                  product: {
                     name: "SUSE Linux",
                     product_id: "T002207",
                     product_identification_helper: {
                        cpe: "cpe:/o:suse:suse_linux:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<9.3.1",
                        product: {
                           name: "Splunk Splunk Enterprise <9.3.1",
                           product_id: "T038314",
                        },
                     },
                     {
                        category: "product_version",
                        name: "9.3.1",
                        product: {
                           name: "Splunk Splunk Enterprise 9.3.1",
                           product_id: "T038314-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:splunk:splunk:9.3.1",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<9.2.3",
                        product: {
                           name: "Splunk Splunk Enterprise <9.2.3",
                           product_id: "T038315",
                        },
                     },
                     {
                        category: "product_version",
                        name: "9.2.3",
                        product: {
                           name: "Splunk Splunk Enterprise 9.2.3",
                           product_id: "T038315-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:splunk:splunk:9.2.3",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<9.1.6",
                        product: {
                           name: "Splunk Splunk Enterprise <9.1.6",
                           product_id: "T038316",
                        },
                     },
                     {
                        category: "product_version",
                        name: "9.1.6",
                        product: {
                           name: "Splunk Splunk Enterprise 9.1.6",
                           product_id: "T038316-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:splunk:splunk:9.1.6",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Splunk Enterprise",
               },
            ],
            category: "vendor",
            name: "Splunk",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "Ubuntu Linux",
                  product: {
                     name: "Ubuntu Linux",
                     product_id: "T000126",
                     product_identification_helper: {
                        cpe: "cpe:/o:canonical:ubuntu_linux:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "Ubuntu",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2019-13057",
         notes: [
            {
               category: "description",
               text: "Es existiert eine Schwachstelle in OpenLDAP. Bei bestimmten, vom Serveradministrator durchzuführenden Konfigurationseinstellungen, ist es möglich, dass der Serveradministrator und ein DB-Administrator unterschiedliche Vertrauensstufen genießen. Unter diesen Umständen ist es möglich, die Autorisierung als Identität von einer anderen Datenbank anzufordern, und so Sicherheitsrestriktionen zu umgehen.",
            },
         ],
         product_status: {
            known_affected: [
               "T014729",
               "T002207",
               "T000126",
               "5930",
               "T038314",
               "398363",
               "T038315",
               "T038316",
            ],
         },
         release_date: "2019-07-28T22:00:00.000+00:00",
         title: "CVE-2019-13057",
      },
      {
         cve: "CVE-2019-13565",
         notes: [
            {
               category: "description",
               text: "Es existiert eine Schwachstelle in OpenLDAP. Diese Schwachstelle besteht unter bestimmten Voraussetzungen bei der Verwendung von SASL-Authentifizierung und Sitzungsverschlüsselung und unter Verwendung der SASL-Sicherheitsebenen in Slapd-Access-Kontrollen. Berechtigungsschritte die für einen Benutzer durchgeführt wurden, können sich für andere Benutzer auswirken und diesen ermöglichen Sicherheitsvorkehrungen zu umgehen.",
            },
         ],
         product_status: {
            known_affected: [
               "T014729",
               "T002207",
               "T000126",
               "T038314",
               "398363",
               "T038315",
               "T038316",
            ],
         },
         release_date: "2019-07-28T22:00:00.000+00:00",
         title: "CVE-2019-13565",
      },
   ],
}

cve-2019-13565

Vulnerability from cvelistv5

Published

2019-07-26 12:30

Modified

2024-08-04 23:57

Severity ?

Summary

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user.

References

▼	URL	Tags
	https://usn.ubuntu.com/4078-1/	vendor-advisory, x_refsource_UBUNTU
	https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/4078-2/	vendor-advisory, x_refsource_UBUNTU
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html	vendor-advisory, x_refsource_SUSE
	https://seclists.org/bugtraq/2019/Dec/23	mailing-list, x_refsource_BUGTRAQ
	http://seclists.org/fulldisclosure/2019/Dec/26	mailing-list, x_refsource_FULLDISC
	https://www.oracle.com/security-alerts/cpuapr2020.html	x_refsource_MISC
	https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E	mailing-list, x_refsource_MLIST
	https://support.apple.com/kb/HT210788	x_refsource_CONFIRM
	https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E	mailing-list, x_refsource_MLIST
	https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
	https://www.openldap.org/lists/openldap-announce/201907/msg00001.html	x_refsource_CONFIRM
	https://www.openldap.org/its/index.cgi/?findid=9052	x_refsource_MISC
	https://support.f5.com/csp/article/K98008862?utm_source=f5support&amp%3Butm_medium=RSS	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T23:57:39.435Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "USN-4078-1",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_UBUNTU",
                     "x_transferred",
                  ],
                  url: "https://usn.ubuntu.com/4078-1/",
               },
               {
                  name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
               },
               {
                  name: "USN-4078-2",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_UBUNTU",
                     "x_transferred",
                  ],
                  url: "https://usn.ubuntu.com/4078-2/",
               },
               {
                  name: "openSUSE-SU-2019:2157",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
               },
               {
                  name: "openSUSE-SU-2019:2176",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
               },
               {
                  name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "https://seclists.org/bugtraq/2019/Dec/23",
               },
               {
                  name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                  tags: [
                     "mailing-list",
                     "x_refsource_FULLDISC",
                     "x_transferred",
                  ],
                  url: "http://seclists.org/fulldisclosure/2019/Dec/26",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
               },
               {
                  name: "[bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.apple.com/kb/HT210788",
               },
               {
                  name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E",
               },
               {
                  name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.openldap.org/its/index.cgi/?findid=9052",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.f5.com/csp/article/K98008862?utm_source=f5support&amp%3Butm_medium=RSS",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-04-19T23:20:10",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "USN-4078-1",
               tags: [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
               ],
               url: "https://usn.ubuntu.com/4078-1/",
            },
            {
               name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
            },
            {
               name: "USN-4078-2",
               tags: [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
               ],
               url: "https://usn.ubuntu.com/4078-2/",
            },
            {
               name: "openSUSE-SU-2019:2157",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
            },
            {
               name: "openSUSE-SU-2019:2176",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
            },
            {
               name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "https://seclists.org/bugtraq/2019/Dec/23",
            },
            {
               name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
               tags: [
                  "mailing-list",
                  "x_refsource_FULLDISC",
               ],
               url: "http://seclists.org/fulldisclosure/2019/Dec/26",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
            },
            {
               name: "[bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.apple.com/kb/HT210788",
            },
            {
               name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E",
            },
            {
               name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.openldap.org/its/index.cgi/?findid=9052",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.f5.com/csp/article/K98008862?utm_source=f5support&amp%3Butm_medium=RSS",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2019-13565",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "USN-4078-1",
                     refsource: "UBUNTU",
                     url: "https://usn.ubuntu.com/4078-1/",
                  },
                  {
                     name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
                     refsource: "MLIST",
                     url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
                  },
                  {
                     name: "USN-4078-2",
                     refsource: "UBUNTU",
                     url: "https://usn.ubuntu.com/4078-2/",
                  },
                  {
                     name: "openSUSE-SU-2019:2157",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
                  },
                  {
                     name: "openSUSE-SU-2019:2176",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
                  },
                  {
                     name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                     refsource: "BUGTRAQ",
                     url: "https://seclists.org/bugtraq/2019/Dec/23",
                  },
                  {
                     name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                     refsource: "FULLDISC",
                     url: "http://seclists.org/fulldisclosure/2019/Dec/26",
                  },
                  {
                     name: "https://www.oracle.com/security-alerts/cpuapr2020.html",
                     refsource: "MISC",
                     url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
                  },
                  {
                     name: "[bookkeeper-issues] 20200729 [GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image",
                     refsource: "MLIST",
                     url: "https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E",
                  },
                  {
                     name: "https://support.apple.com/kb/HT210788",
                     refsource: "CONFIRM",
                     url: "https://support.apple.com/kb/HT210788",
                  },
                  {
                     name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
                     refsource: "MLIST",
                     url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E",
                  },
                  {
                     name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
                     refsource: "MLIST",
                     url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E",
                  },
                  {
                     name: "https://www.oracle.com/security-alerts/cpuapr2022.html",
                     refsource: "MISC",
                     url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
                  },
                  {
                     name: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
                     refsource: "CONFIRM",
                     url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
                  },
                  {
                     name: "https://www.openldap.org/its/index.cgi/?findid=9052",
                     refsource: "MISC",
                     url: "https://www.openldap.org/its/index.cgi/?findid=9052",
                  },
                  {
                     name: "https://support.f5.com/csp/article/K98008862?utm_source=f5support&amp;utm_medium=RSS",
                     refsource: "CONFIRM",
                     url: "https://support.f5.com/csp/article/K98008862?utm_source=f5support&amp;utm_medium=RSS",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2019-13565",
      datePublished: "2019-07-26T12:30:58",
      dateReserved: "2019-07-11T00:00:00",
      dateUpdated: "2024-08-04T23:57:39.435Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13057

Vulnerability from cvelistv5

Published

2019-07-26 12:19

Modified

2024-08-04 23:41

Severity ?

Summary

An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) privileges for certain databases but wants to maintain isolation (e.g., for multi-tenant deployments), slapd does not properly stop a rootDN from requesting authorization as an identity from another database during a SASL bind or with a proxyAuthz (RFC 4370) control. (It is not a common configuration to deploy a system where the server administrator and a DB administrator enjoy different levels of trust.)

References

▼	URL	Tags
	https://usn.ubuntu.com/4078-1/	vendor-advisory, x_refsource_UBUNTU
	https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/4078-2/	vendor-advisory, x_refsource_UBUNTU
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html	vendor-advisory, x_refsource_SUSE
	https://seclists.org/bugtraq/2019/Dec/23	mailing-list, x_refsource_BUGTRAQ
	http://seclists.org/fulldisclosure/2019/Dec/26	mailing-list, x_refsource_FULLDISC
	https://www.oracle.com/security-alerts/cpuapr2020.html	x_refsource_MISC
	https://support.apple.com/kb/HT210788	x_refsource_CONFIRM
	https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
	https://kc.mcafee.com/corporate/index?page=content&id=SB10365	x_refsource_CONFIRM
	https://www.openldap.org/its/?findid=9038	x_refsource_MISC
	https://www.openldap.org/lists/openldap-announce/201907/msg00001.html	x_refsource_CONFIRM
	https://security.netapp.com/advisory/ntap-20190822-0004/	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T23:41:10.083Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "USN-4078-1",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_UBUNTU",
                     "x_transferred",
                  ],
                  url: "https://usn.ubuntu.com/4078-1/",
               },
               {
                  name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
                  tags: [
                     "mailing-list",
                     "x_refsource_MLIST",
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
               },
               {
                  name: "USN-4078-2",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_UBUNTU",
                     "x_transferred",
                  ],
                  url: "https://usn.ubuntu.com/4078-2/",
               },
               {
                  name: "openSUSE-SU-2019:2157",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
               },
               {
                  name: "openSUSE-SU-2019:2176",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
               },
               {
                  name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "https://seclists.org/bugtraq/2019/Dec/23",
               },
               {
                  name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                  tags: [
                     "mailing-list",
                     "x_refsource_FULLDISC",
                     "x_transferred",
                  ],
                  url: "http://seclists.org/fulldisclosure/2019/Dec/26",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.apple.com/kb/HT210788",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10365",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.openldap.org/its/?findid=9038",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://security.netapp.com/advisory/ntap-20190822-0004/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) privileges for certain databases but wants to maintain isolation (e.g., for multi-tenant deployments), slapd does not properly stop a rootDN from requesting authorization as an identity from another database during a SASL bind or with a proxyAuthz (RFC 4370) control. (It is not a common configuration to deploy a system where the server administrator and a DB administrator enjoy different levels of trust.)",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-04-19T23:20:08",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "USN-4078-1",
               tags: [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
               ],
               url: "https://usn.ubuntu.com/4078-1/",
            },
            {
               name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
               tags: [
                  "mailing-list",
                  "x_refsource_MLIST",
               ],
               url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
            },
            {
               name: "USN-4078-2",
               tags: [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
               ],
               url: "https://usn.ubuntu.com/4078-2/",
            },
            {
               name: "openSUSE-SU-2019:2157",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
            },
            {
               name: "openSUSE-SU-2019:2176",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
            },
            {
               name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "https://seclists.org/bugtraq/2019/Dec/23",
            },
            {
               name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
               tags: [
                  "mailing-list",
                  "x_refsource_FULLDISC",
               ],
               url: "http://seclists.org/fulldisclosure/2019/Dec/26",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.apple.com/kb/HT210788",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10365",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.openldap.org/its/?findid=9038",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://security.netapp.com/advisory/ntap-20190822-0004/",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2019-13057",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) privileges for certain databases but wants to maintain isolation (e.g., for multi-tenant deployments), slapd does not properly stop a rootDN from requesting authorization as an identity from another database during a SASL bind or with a proxyAuthz (RFC 4370) control. (It is not a common configuration to deploy a system where the server administrator and a DB administrator enjoy different levels of trust.)",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "USN-4078-1",
                     refsource: "UBUNTU",
                     url: "https://usn.ubuntu.com/4078-1/",
                  },
                  {
                     name: "[debian-lts-announce] 20190818 [SECURITY] [DLA 1891-1] openldap security update",
                     refsource: "MLIST",
                     url: "https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html",
                  },
                  {
                     name: "USN-4078-2",
                     refsource: "UBUNTU",
                     url: "https://usn.ubuntu.com/4078-2/",
                  },
                  {
                     name: "openSUSE-SU-2019:2157",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html",
                  },
                  {
                     name: "openSUSE-SU-2019:2176",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html",
                  },
                  {
                     name: "20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                     refsource: "BUGTRAQ",
                     url: "https://seclists.org/bugtraq/2019/Dec/23",
                  },
                  {
                     name: "20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra",
                     refsource: "FULLDISC",
                     url: "http://seclists.org/fulldisclosure/2019/Dec/26",
                  },
                  {
                     name: "https://www.oracle.com/security-alerts/cpuapr2020.html",
                     refsource: "MISC",
                     url: "https://www.oracle.com/security-alerts/cpuapr2020.html",
                  },
                  {
                     name: "https://support.apple.com/kb/HT210788",
                     refsource: "CONFIRM",
                     url: "https://support.apple.com/kb/HT210788",
                  },
                  {
                     name: "https://www.oracle.com/security-alerts/cpuapr2022.html",
                     refsource: "MISC",
                     url: "https://www.oracle.com/security-alerts/cpuapr2022.html",
                  },
                  {
                     name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10365",
                     refsource: "CONFIRM",
                     url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10365",
                  },
                  {
                     name: "https://www.openldap.org/its/?findid=9038",
                     refsource: "MISC",
                     url: "https://www.openldap.org/its/?findid=9038",
                  },
                  {
                     name: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
                     refsource: "CONFIRM",
                     url: "https://www.openldap.org/lists/openldap-announce/201907/msg00001.html",
                  },
                  {
                     name: "https://security.netapp.com/advisory/ntap-20190822-0004/",
                     refsource: "CONFIRM",
                     url: "https://security.netapp.com/advisory/ntap-20190822-0004/",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2019-13057",
      datePublished: "2019-07-26T12:19:25",
      dateReserved: "2019-06-29T00:00:00",
      dateUpdated: "2024-08-04T23:41:10.083Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

WID-SEC-W-2023-1128

Vulnerability from csaf_certbund

cve-2019-13565

Vulnerability from cvelistv5

cve-2019-13057

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature