CVE-2022-24832

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-24832
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-24832.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-24832
Aliases
  • GHSA-x5v3-x9qj-mh3h
Published
2022-04-11T21:15:08Z
Modified
2024-06-06T13:58:05.763515Z
Severity
  • 6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
[none]
Details

GoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin included with the GoCD Server fails to correctly escape special characters when using the username to construct LDAP queries. While this does not directly allow arbitrary LDAP data exfiltration, it can allow an existing LDAP-authenticated GoCD user with malicious intent to construct and execute malicious queries, allowing them to deduce facts about other users or entries within the LDAP database (e.g alternate fields, usernames, hashed passwords etc) through brute force mechanisms. This only affects users who have a working LDAP authorization configuration enabled on their GoCD server, and only is exploitable by users authenticating using such an LDAP configuration. This issue has been fixed in GoCD 22.1.0, which is bundled with gocd-ldap-authentication-plugin v2.2.0-144.

References

Affected packages

Git / github.com/gocd/gocd

Affected ranges

Type
GIT
Repo
https://github.com/gocd/gocd
Events
Type
GIT
Repo
https://github.com/gocd/gocd-ldap-authentication-plugin
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

0.*

0.0.1

1.*

1.0.1
1.0.2
1.0.3

17.*

17.10.0
17.11.0
17.12.0
17.5.0
17.6.0
17.7.0
17.8.0
17.9.0

18.*

18.1.0
18.10.0
18.11.0
18.12.0
18.2.0
18.3.0
18.4.0
18.5.0
18.6.0
18.7.0
18.8.0
18.9.0

19.*

19.1.0
19.10.0
19.11.0
19.12.0
19.2.0
19.3.0
19.4.0
19.5.0
19.6.0
19.7.0
19.8.0
19.9.0

2.*

2.0.0
2.0.0-beta

20.*

20.1.0
20.10.0
20.2.0
20.3.0
20.4.0
20.5.0
20.6.0
20.7.0
20.8.0
20.9.0

21.*

21.1.0
21.2.0
21.3.0
21.4.0

v2.*

v2.0.0-69-exp
v2.0.0-70-exp
v2.0.0-71-exp
v2.0.0-72-exp
v2.0.0-73-exp
v2.0.0-74-exp
v2.0.0-85-exp
v2.0.0-89-exp
v2.0.1-90
v2.0.1-90-exp
v2.0.1-91-exp
v2.0.1-92-exp
v2.0.1-93-exp
v2.0.1-96-exp
v2.0.2-102-exp
v2.0.2-103-exp
v2.0.2-104-exp
v2.0.2-105-exp
v2.0.2-109-exp
v2.0.2-110-exp
v2.0.2-111-exp
v2.0.2-99-exp
v2.1.0-112-exp
v2.1.0-113-exp
v2.1.0-114-exp
v2.1.0-115-exp
v2.1.0-116-exp
v2.1.0-117-exp
v2.1.0-118-exp
v2.1.0-124-exp
v2.1.0-127-exp
v2.1.0-128-exp
v2.1.0-130-exp
v2.1.0-132-exp
v2.1.0-133-exp
v2.1.0-134-exp
v2.1.0-136-exp
v2.1.0-138-exp
v2.1.0-139
v2.1.0-139-exp
v2.1.0-141-exp