vulnerability
Amazon Linux AMI: CVE-2018-16838: Security patch for sssd (ALAS-2019-1307)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:S/C:P/I:P/A:N) | Mar 25, 2019 | Oct 11, 2019 | Oct 14, 2022 |
Severity
6
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:N)
Published
Mar 25, 2019
Added
Oct 11, 2019
Modified
Oct 14, 2022
Description
A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users to login instead of denying access.
Solution
amazon-linux-upgrade-sssd
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.