CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2022-31085 – Missing Encryption of Sensitive Data in ldap-account-manager
https://notcve.org/view.php?id=CVE-2022-31085
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the session files include the LDAP user name and password in clear text if the PHP OpenSSL extension is not installed or encryption is disabled by configuration. This issue has been fixed in version 8.0. Users unable to upgrade should install the PHP OpenSSL extension and make sure session encryption is enabled in LAM main configuration. LDAP Account Manager (LAM) es un frontend web para administrar las entradas (por ejemplo, usuarios, grupos, configuraciones DHCP) almacenadas en un directorio LDAP. • https://github.com/LDAPAccountManager/lam/commit/f1d5d04952f39a1b4ea203d3964fa88e1429dfd4 https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-6m3q-5c84-6h6j https://www.debian.org/security/2022/dsa-5177 • CWE-311: Missing Encryption of Sensitive Data CWE-522: Insufficiently Protected Credentials •
CVSS: 9.0EPSS: 1%CPEs: 2EXPL: 1CVE-2022-31084 – Unauthenticated Remote Code Execution in ldap-account-manager
https://notcve.org/view.php?id=CVE-2022-31084
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 There are cases where LAM instantiates objects from arbitrary classes. An attacker can inject the first constructor argument. This can lead to code execution if non-LAM classes are instantiated that execute code during object creation. This issue has been fixed in version 8.0. • https://github.com/LDAPAccountManager/lam/commit/f1d5d04952f39a1b4ea203d3964fa88e1429dfd4 https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-r387-grjx-qgvw https://swarm.ptsecurity.com/exploiting-arbitrary-object-instantiations https://www.debian.org/security/2022/dsa-5177 • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2022-31086 – Incorrect Regular Expressions in ldap-account-manager
https://notcve.org/view.php?id=CVE-2022-31086
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 incorrect regular expressions allow to upload PHP scripts to config/templates/pdf. This vulnerability could lead to a Remote Code Execution if the /config/templates/pdf/ directory is accessible for remote users. This is not a default configuration of LAM. This issue has been fixed in version 8.0. • https://github.com/LDAPAccountManager/lam/commit/f1d5d04952f39a1b4ea203d3964fa88e1429dfd4 https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-q9pc-x84w-982x https://www.debian.org/security/2022/dsa-5177 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-31087 – Incorrect Default Permissions in ldap-account-manager
https://notcve.org/view.php?id=CVE-2022-31087
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host. This issue has been fixed in version 8.0. Users unable to upgrade should disallow executing PHP scripts in (/var/lib/ldap-account-manager/)tmp directory. • https://github.com/LDAPAccountManager/lam/commit/f1d5d04952f39a1b4ea203d3964fa88e1429dfd4 https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-q8g5-45m4-q95p https://www.debian.org/security/2022/dsa-5177 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-863: Incorrect Authorization •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-31088 – Unauthenticated LDAP Injection in ldap-account-manager
https://notcve.org/view.php?id=CVE-2022-31088
LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the user name field at login could be used to enumerate LDAP data. This is only the case for LDAP search configuration. This issue has been fixed in version 8.0. LDAP Account Manager (LAM) es una interfaz web para administrar entradas (por ejemplo, usuarios, grupos, configuraciones DHCP) almacenadas en un directorio LDAP. • https://github.com/LDAPAccountManager/lam/commit/f1d5d04952f39a1b4ea203d3964fa88e1429dfd4 https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-wxf8-9x99-6gp4 https://www.debian.org/security/2022/dsa-5177 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •