CVE-2017-11191
high-risk
Published 2017-09-28
FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID (for the same user account) that had been created for an earlier session. NOTE: Vendor states that issue does not exist in product and does not recognize this report as a valid security concern
Do I need to act?
-
0.07% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Freeipa
Affected Vendors
References (2)
Third Party Advisory
http://packetstormsecurity.com/files/143532/FreeIPA-2.213-Session-Hijacking.html
Third Party Advisory
http://packetstormsecurity.com/files/143532/FreeIPA-2.213-Session-Hijacking.html
53
/ 100
high-risk
Severity
30/34 · Critical
Exploitability
0/34 · Minimal
Exposure
23/34 · High