CVE-2012-5484

Published Jan 27, 2013

Last updated 12 years ago

Overview

Description: The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification Authority (CA) certificate from the server, which allows man-in-the-middle attackers to spoof a join procedure via a crafted certificate.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.9
Impact score: 10
Exploitability score: 5.5
Vector string: AV:A/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-310

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61635E9E-FA0F-43DD-956D-6A65CC349DA8"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8002A146-BC41-45D1-BDBE-13A99A83B81B"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13A3C75F-9A29-43DA-99D9-A012E43C2FBE"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7812FB3-207A-4A88-88B5-2413DE7F843B"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09D0A859-34B4-4A2B-9DDE-49224B6BE161"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A17AACA8-52EA-4A9D-A02C-4064E7056454"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:2.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF167865-60B0-4350-B2F3-5AB037F1A3BB"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:3.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9EC0B67-0A62-40DB-AB3D-47251D6A9A45"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:3.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4876ACC-1CF4-4674-8DD0-D64E028F5FE8"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:3.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A987D93-5427-4954-8C6C-E7C295A09BF3"
          },
          {
            "criteria": "cpe:2.3:a:redhat:freeipa:3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BED799E-F847-4FAD-8EE0-CAB1DA6C0558"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References