- EPSS 1.29%
- Published 03.11.2014 23:55:04
- Last modified 12.04.2025 10:46:40
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn...
- EPSS 0.44%
- Published 29.05.2014 14:19:06
- Last modified 12.04.2025 10:46:40
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNTTrustAuthIncoming and (2) ipaNTTrustAuthOutgoing attributes, which allow remote attackers to obtain the Cross-Realm Kerberos Trust key via unspecified vectors.
CVE-2012-5484
- EPSS 0.53%
- Published 27.01.2013 18:55:02
- Last modified 11.04.2025 00:51:21
The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.
CVE-2011-3636
- EPSS 0.16%
- Published 08.12.2011 11:55:01
- Last modified 11.04.2025 00:51:21
Cross-site request forgery (CSRF) vulnerability in the management interface in FreeIPA before 2.1.4 allows remote attackers to hijack the authentication of administrators for requests that make configuration changes.
- EPSS 0.72%
- Published 12.09.2008 16:56:20
- Last modified 09.04.2025 00:30:58
The default configuration of Red Hat Enterprise IPA 1.0.0 and FreeIPA before 1.1.1 places ldap:///anyone on the read ACL for the krbMKey attribute, which allows remote attackers to obtain the Kerberos master key via an anonymous LDAP query.