#VU36812 Input validation error in FreeIPA - CVE-2017-2590

Cybersecurity Help s.r.o.

Published: 2018-07-27 | Updated: 2020-08-08

Vulnerability identifier: #VU36812

Vulnerability risk: High

CVSSv4.0: 5.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-2590

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
FreeIPA
Other software / Other software solutions

Vendor: freeipa.org

Description

The vulnerability allows a remote authenticated user to #BASIC_IMPACT#.

A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. An authenticated, unauthorized attacker could use this flaw to delete, disable, or enable CAs causing various denial of service problems with certificate issuance, OCSP signing, and deletion of secret keys.

Mitigation
Install update from vendor's website.

Vulnerable software versions

FreeIPA: 4.0.0 - 4.0.5, 4.1.0.alpha1 - 4.1.5, 4.2.0.alpha1 - 4.2.4, 4.3.0 - 4.3.3

External links
https://rhn.redhat.com/errata/RHSA-2017-0388.html
https://www.securityfocus.com/bid/96557
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2590

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Input validation error in FreeIPA

Red Hat Enterprise Linux 7 update for ipa

Fedora 25 update for freeipa