CVE-2022-24832

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-24832

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-24832.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-24832

Related

GHSA-x5v3-x9qj-mh3h

Published

2022-04-11T21:15:08Z

Modified

2025-01-15T02:18:00.760106Z

Severity

6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator

Summary

[none]

Details

GoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin included with the GoCD Server fails to correctly escape special characters when using the username to construct LDAP queries. While this does not directly allow arbitrary LDAP data exfiltration, it can allow an existing LDAP-authenticated GoCD user with malicious intent to construct and execute malicious queries, allowing them to deduce facts about other users or entries within the LDAP database (e.g alternate fields, usernames, hashed passwords etc) through brute force mechanisms. This only affects users who have a working LDAP authorization configuration enabled on their GoCD server, and only is exploitable by users authenticating using such an LDAP configuration. This issue has been fixed in GoCD 22.1.0, which is bundled with gocd-ldap-authentication-plugin v2.2.0-144.

References

Affected packages

Git / github.com/gocd/gocd

Affected ranges

Type: GIT
Repo: https://github.com/gocd/gocd
Events: Introduced

3130b5ba96f8155ae86fefb261a559d4c7493326

Fixed

f4c9c1650e2e27fe0a9962faa39536f94f57e297

Type: GIT
Repo: https://github.com/gocd/gocd-ldap-authentication-plugin
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

87fa7dac5d899b3960ab48e151881da4793cfcc3

Fixed

87fa7dac5d899b3960ab48e151881da4793cfcc3

Affected versions

0.*

0.0.1

1.*

1.0.1

1.0.2

1.0.3

17.*

17.10.0

17.11.0

17.12.0

17.5.0

17.6.0

17.7.0

17.8.0

17.9.0

18.*

18.1.0

18.10.0

18.11.0

18.12.0

18.2.0

18.3.0

18.4.0

18.5.0

18.6.0

18.7.0

18.8.0

18.9.0

19.*

19.1.0

19.10.0

19.11.0

19.12.0

19.2.0

19.3.0

19.4.0

19.5.0

19.6.0

19.7.0

19.8.0

19.9.0

2.*

2.0.0

2.0.0-beta

20.*

20.1.0

20.10.0

20.2.0

20.3.0

20.4.0

20.5.0

20.6.0

20.7.0

20.8.0

20.9.0

21.*

21.1.0

21.2.0

21.3.0

21.4.0

v2.*

v2.0.0-69-exp

v2.0.0-70-exp

v2.0.0-71-exp

v2.0.0-72-exp

v2.0.0-73-exp

v2.0.0-74-exp

v2.0.0-85-exp

v2.0.0-89-exp

v2.0.1-90

v2.0.1-90-exp

v2.0.1-91-exp

v2.0.1-92-exp

v2.0.1-93-exp

v2.0.1-96-exp

v2.0.2-102-exp

v2.0.2-103-exp

v2.0.2-104-exp

v2.0.2-105-exp

v2.0.2-109-exp

v2.0.2-110-exp

v2.0.2-111-exp

v2.0.2-99-exp

v2.1.0-112-exp

v2.1.0-113-exp

v2.1.0-114-exp

v2.1.0-115-exp

v2.1.0-116-exp

v2.1.0-117-exp

v2.1.0-118-exp

v2.1.0-124-exp

v2.1.0-127-exp

v2.1.0-128-exp

v2.1.0-130-exp

v2.1.0-132-exp

v2.1.0-133-exp

v2.1.0-134-exp

v2.1.0-136-exp

v2.1.0-138-exp

v2.1.0-139

v2.1.0-139-exp

v2.1.0-141-exp