CVE-2018-10871

Description

389-ds-base before versions 1.3.8.5, 1.4.0.12 is vulnerable to a Cleartext Storage of Sensitive Information. By default, when the Replica and/or retroChangeLog plugins are enabled, 389-ds-base stores passwords in plaintext format in their respective changelog files. An attacker with sufficiently high privileges, such as root or Directory Manager, can query these files in order to retrieve plaintext passwords.

CVSS breakdown

CVSS 3.0

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

Affected products

Unknown / 389-ds-base389-ds-base 1.3.8.5 – 389-ds-base 1.3.8.5
Unknown / 389-ds-base389-ds-base 1.4.0.12 – 389-ds-base 1.4.0.12

References

MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10871
MISChttps://pagure.io/389-ds-base/issue/49789
MAILING_LISThttps://lists.debian.org/debian-lts-announce/2018/08/msg00032.html
VENDOR_ADVISORYhttps://access.redhat.com/errata/RHSA-2019:3401