Описание
Redash 8.0.0 is affected by LDAP Injection. There is an information leak through the crafting of special queries, escaping the provided template since the username included in the search filter lacks sanitization.
Ссылки
- Issue TrackingThird Party Advisory
- Release NotesThird Party Advisory
- Issue TrackingThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:redash:redash:8.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00331
Низкий
5.3 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
Redash 8.0.0 is affected by LDAP Injection. There is an authentication bypass and information leak through the crafting of special queries, escaping the provided template because the ldap_user = auth_ldap_user(request.form["email"], request.form["password"]) auth_ldap_user(username, password) settings.LDAP_SEARCH_TEMPLATE % {"username": username} code lacks sanitization.
EPSS
Процентиль: 56%
0.00331
Низкий
5.3 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74