CVE-2019-13565 : An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentic

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain access that would otherwise be denied via a simple bind for any identity covered in those ACLs. After the first SASL bind is completed, the sasl_ssf value is retained for all new non-SASL connections. Depending on the ACL configuration, this can affect different types of operations (searches, modifications, etc.). In other words, a successful authorization step completed by one user affects the authorization requirement for a different user.

Published 2019-07-26 13:15:13

Updated 2022-06-13 18:38:38

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2019-13565

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X
Versions from including (>=) 10.13 and before (<) 10.13.6
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X
Versions from including (>=) 10.14 and before (<) 10.14.6
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X
Versions from including (>=) 10.15 and before (<) 10.15.2
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6
cpe:2.3:o:apple:mac_os_x:10.13.6:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6
cpe:2.3:o:apple:mac_os_x:10.14.6:-:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.14.6 Update Security Update 2019-001
cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6
cpe:2.3:o:apple:mac_os_x:10.13.6:-:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2018-002
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-002:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2018-003
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-003:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-001
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-001:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-002
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-002:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-003
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-003:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-004
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-004:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-005
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-005:*:*:*:*:*:*
Matching versions
Apple » Mac Os X » Version: 10.13.6 Update Security Update 2019-006
cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-006:*:*:*:*:*:*
Matching versions
Oracle » Solaris » Version: 11
cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*
Matching versions
Oracle » Zfs Storage Appliance Kit » Version: 8.8
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*
Matching versions
Oracle » Blockchain Platform
Versions before (<) 21.1.2
cpe:2.3:a:oracle:blockchain_platform:*:*:*:*:*:*:*:*
Matching versions
F5 » Traffix Signaling Delivery Controller » Version: 5.1.0
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0:*:*:*:*:*:*:*
Matching versions
F5 » Traffix Signaling Delivery Controller » Version: 5.0.0
cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.0.0:*:*:*:*:*:*:*
Matching versions
Openldap » Openldap
Versions from including (>=) 2.0 and up to, including, (<=) 2.4.47
cpe:2.3:a:openldap:openldap:*:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 14.04 ESM Edition
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.04 ESM Edition
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 16.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 18.04
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 19.04
cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
Matching versions
Opensuse » Leap » Version: 15.0
cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
Matching versions
Opensuse » Leap » Version: 15.1
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2019-13565

Top countries where our scanners detected CVE-2019-13565

Top open port discovered on systems with this issue 3306

IPs affected by CVE-2019-13565 14,271

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2019-13565!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2019-13565

EPSS FAQ

4.37%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 88 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2019-13565

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

References for CVE-2019-13565

https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E

[GitHub] [bookkeeper] padma81 opened a new issue #2387: Security vulnerabilities in the apache/bookkeeper-4.9.2 image - Pony Mail
Mailing List;Third Party Advisory

CVEs referencing this url
https://seclists.org/bugtraq/2019/Dec/23

Bugtraq: APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
Mailing List;Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E

Mailing List;Third Party Advisory

CVEs referencing this url
https://www.oracle.com/security-alerts/cpuapr2022.html

Oracle Critical Patch Update Advisory - April 2022
Patch;Third Party Advisory

CVEs referencing this url
https://www.oracle.com/security-alerts/cpuapr2020.html

Oracle Critical Patch Update Advisory - April 2020
Patch;Third Party Advisory

CVEs referencing this url
http://seclists.org/fulldisclosure/2019/Dec/26

Full Disclosure: APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
Mailing List;Third Party Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2019/08/msg00024.html

[SECURITY] [DLA 1891-1] openldap security update
Mailing List;Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html

[security-announce] openSUSE-SU-2019:2157-1: moderate: Security update f
Mailing List;Third Party Advisory

CVEs referencing this url
https://www.openldap.org/its/index.cgi/?findid=9052

OpenLDAP ITS - Message 9052
Mailing List;Vendor Advisory
https://support.apple.com/kb/HT210788

About the security content of macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra - Apple Support
Third Party Advisory

CVEs referencing this url
https://usn.ubuntu.com/4078-2/

USN-4078-2: OpenLDAP vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
https://www.openldap.org/lists/openldap-announce/201907/msg00001.html

OpenLDAP 2.4.48 available, LMDB 0.9.24 available
Mailing List;Vendor Advisory

CVEs referencing this url
https://support.f5.com/csp/article/K98008862?utm_source=f5support&utm_medium=RSS

Third Party Advisory
https://usn.ubuntu.com/4078-1/

USN-4078-1: OpenLDAP vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E

[GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8 - Pony Mail
Mailing List;Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html

[security-announce] openSUSE-SU-2019:2176-1: moderate: Security update f
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2019-13565

Products affected by CVE-2019-13565

Threat overview for CVE-2019-13565

Exploit prediction scoring system (EPSS) score for CVE-2019-13565

CVSS scores for CVE-2019-13565

References for CVE-2019-13565