CVE-2019-3811

A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable.

CVSS v3 5.2 MEDIUM
CVSS v2.0 2.7 LOW

5.2^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.5 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.7^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:A/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 5.1 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html	Mailing List Third Party Advisory
http://www.securityfocus.com/bid/106644	Broken Link
https://access.redhat.com/errata/RHSA-2019:2177	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811	Issue Tracking Patch Vendor Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html
http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html	Mailing List Third Party Advisory
http://www.securityfocus.com/bid/106644	Broken Link
https://access.redhat.com/errata/RHSA-2019:2177	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811	Issue Tracking Patch Vendor Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html

Configurations

Configuration 1 (hide)

cpe:2.3:a:fedoraproject:sssd:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:fedoraproject:fedora:-:*:*:*:*:*:*:*

Configuration 4 (hide)

OR	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:42.3:::::::*

Configuration 5 (hide)

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

History

21 Nov 2024, 04:42

Type	Values Removed	Values Added
References	~~() http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html - Mailing List, Third Party Advisory~~	() http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html - Mailing List, Third Party Advisory
References	~~() http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html - Mailing List, Third Party Advisory~~	() http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html - Mailing List, Third Party Advisory
References	~~() http://www.securityfocus.com/bid/106644 - Broken Link~~	() http://www.securityfocus.com/bid/106644 - Broken Link
References	~~() https://access.redhat.com/errata/RHSA-2019:2177 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2019:2177 - Third Party Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811 - Issue Tracking, Patch, Vendor Advisory~~	() https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811 - Issue Tracking, Patch, Vendor Advisory
References	~~() https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html - Mailing List, Third Party Advisory~~	() https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html - Mailing List, Third Party Advisory
References	~~() https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html -~~	() https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html -

29 May 2023, 17:15

Type	Values Removed	Values Added
References		(MISC) https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html -

02 Nov 2021, 20:07

Type	Values Removed	Values Added
CWE	~~CWE-20~~	NVD-CWE-Other
References	~~(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html - Third Party Advisory~~	(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html - Mailing List, Third Party Advisory
References	~~(BID) http://www.securityfocus.com/bid/106644 - Third Party Advisory, VDB Entry~~	(BID) http://www.securityfocus.com/bid/106644 - Broken Link
References	~~(REDHAT) https://access.redhat.com/errata/RHSA-2019:2177 -~~	(REDHAT) https://access.redhat.com/errata/RHSA-2019:2177 - Third Party Advisory
References	~~(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html - Third Party Advisory~~	(SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html - Mailing List, Third Party Advisory

Information

Published : 2019-01-15 15:29

Updated : 2024-11-21 04:42

NVD link : CVE-2019-3811

Mitre link : CVE-2019-3811

CVE.ORG link : CVE-2019-3811

JSON object : View

Products Affected

redhat

enterprise_linux

debian

debian_linux

fedoraproject

fedora
sssd

opensuse

leap

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-552

Files or Directories Accessible to External Parties

NVD-CWE-Other

{"id": "CVE-2019-3811", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.7, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 5.1, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 4.1, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.3}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.2, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.5}]}, "published": "2019-01-15T15:29:00.360", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/106644", "tags": ["Broken Link"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2019:2177", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html", "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00026.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00045.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/106644", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2019:2177", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811", "tags": ["Issue Tracking", "Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00011.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00028.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-200"}, {"lang": "en", "value": "CWE-552"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable."}, {"lang": "es", "value": "Se ha encontrado una vulnerabilidad en sssd. Si se configura un usuario sin un directorio de inicio establecido, sssd devolver\u00eda \"/\" (el directorio root) en lugar de \" \" (cadena vac\u00eda/no directorio de inicio). Esto podr\u00eda impactar sobre los servicios que restringen el acceso al sistema de archivos del usuario a solo su directorio de inicio mediante chroot(), etc. Todas las versiones anteriores a la 2.1 son vulnerables."}], "lastModified": "2024-11-21T04:42:35.407", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fedoraproject:sssd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE18BF4D-E68C-44E0-9D3C-1221EF2727D7", "versionEndExcluding": "2.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3FEADDA-2AEE-4F65-9401-971B585664A8"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9"}, {"criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

5.2 /10

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.7 /10

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2019-3811

5.2^/10

2.7^/10

Attach tags to `CVE-2019-3811`