CVE-2020-8023

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

01/09/2020

Last modified:

11/09/2020

Description

A acceptance of Extraneous Untrusted Data With Trusted Data vulnerability in the start script of openldap2 of SUSE Enterprise Storage 5, SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Enterprise Server 11-SECURITY, SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Linux Enterprise Server 12-SP2-BCL, SUSE Linux Enterprise Server 12-SP2-LTSS, SUSE Linux Enterprise Server 12-SP3-BCL, SUSE Linux Enterprise Server 12-SP3-LTSS, SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 12-SP5, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 12-SP2, SUSE Linux Enterprise Server for SAP 12-SP3, SUSE Linux Enterprise Server for SAP 15, SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud Crowbar 8; openSUSE Leap 15.1, openSUSE Leap 15.2 allows local attackers to escalate privileges from user ldap to root. This issue affects: SUSE Enterprise Storage 5 openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Debuginfo 11-SP3 openldap2 versions prior to 2.4.26-0.74.13.1,. SUSE Linux Enterprise Debuginfo 11-SP4 openldap2 versions prior to 2.4.26-0.74.13.1,. SUSE Linux Enterprise Point of Sale 11-SP3 openldap2 versions prior to 2.4.26-0.74.13.1,. SUSE Linux Enterprise Server 11-SECURITY openldap2-client-openssl1 versions prior to 2.4.26-0.74.13.1. SUSE Linux Enterprise Server 11-SP4-LTSS openldap2 versions prior to 2.4.26-0.74.13.1,. SUSE Linux Enterprise Server 12-SP2-BCL openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 12-SP2-LTSS openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 12-SP3-BCL openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 12-SP3-LTSS openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 12-SP4 openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 12-SP5 openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server 15-LTSS openldap2 versions prior to 2.4.46-9.31.1. SUSE Linux Enterprise Server for SAP 12-SP2 openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server for SAP 12-SP3 openldap2 versions prior to 2.4.41-18.71.2. SUSE Linux Enterprise Server for SAP 15 openldap2 versions prior to 2.4.46-9.31.1. SUSE OpenStack Cloud 7 openldap2 versions prior to 2.4.41-18.71.2. SUSE OpenStack Cloud 8 openldap2 versions prior to 2.4.41-18.71.2. SUSE OpenStack Cloud Crowbar 8 openldap2 versions prior to 2.4.41-18.71.2. openSUSE Leap 15.1 openldap2 versions prior to 2.4.46-lp151.10.12.1. openSUSE Leap 15.2 openldap2 versions prior to 2.4.46-lp152.14.3.1.

Impact

Vector 3.x

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS v3.1 Severity and Metrics:

Base Score: 7.80 HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): High
Availability (A): High

Base Score 3.x

7.80

Severity 3.x

HIGH

Vector 2.0

AV:L/AC:L/Au:N/C:C/I:C/A:C CVSS v2.0 Severity and Metrics:

Base Score: 7.20 HIGH
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Attack Vector (AV): Local
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): Complete
Integrity (I): Complete
Availability (A): Complete

Base Score 2.0

7.20

Severity 2.0

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:opensuse:openldap2::::::::		2.4.41-18.71.2 (excluding)
cpe:2.3:a:suse:enterprise_storage:5.0:::::::*
cpe:2.3:a:suse:openstack_cloud:7.0:::::::*
cpe:2.3:a:suse:openstack_cloud:8.0:::::::*
cpe:2.3:a:suse:openstack_cloud_crowbar:8.0:::::::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp2::::::
cpe:2.3:o:suse:linux_enterprise_server:12:sp2::::sap::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp2:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp3::::sap::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::-:-::
cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp4::::::
cpe:2.3:o:suse:linux_enterprise_server:12:sp5::::::
cpe:2.3:a:opensuse:openldap2::::::::		2.4.26-0.74.13.1 (excluding)
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3::::::

To consult the complete list of CPE names with products and versions, see this page

References to Advisories, Solutions, and Tools

https://bugzilla.suse.com/show_bug.cgi?id=1172698

CPE	From	Up to
cpe:2.3:a:opensuse:openldap2::::::::		2.4.41-18.71.2 (excluding)
cpe:2.3:a:suse:enterprise_storage:5.0:::::::*
cpe:2.3:a:suse:openstack_cloud:7.0:::::::*
cpe:2.3:a:suse:openstack_cloud:8.0:::::::*
cpe:2.3:a:suse:openstack_cloud_crowbar:8.0:::::::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp2::::::
cpe:2.3:o:suse:linux_enterprise_server:12:sp2::::sap::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp2:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp3::::sap::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::-:-::
cpe:2.3:o:suse:linux_enterprise_server:12:sp3:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:12:sp4::::::
cpe:2.3:o:suse:linux_enterprise_server:12:sp5::::::
cpe:2.3:a:opensuse:openldap2::::::::		2.4.26-0.74.13.1 (excluding)
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3::::::