vulnerability

Debian: CVE-2019-10195: freeipa -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:P/I:N/A:N)	11/27/2019	07/30/2024	11/27/2024

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:N/A:N)

Published

11/27/2019

Added

07/30/2024

Modified

11/27/2024

Description

A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way that FreeIPA's batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with passwords as arguments or options is not performed by default in FreeIPA but is possible by third-party components. An attacker having access to system logs on FreeIPA masters could use this flaw to produce log file content with passwords exposed.

Solution

debian-upgrade-freeipa

References

CVE-2019-10195
https://attackerkb.com/topics/CVE-2019-10195

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today