{"id":"CVE-2017-12173","details":"It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use this flaw to retrieve it.","modified":"2026-05-18T05:48:55.515382245Z","published":"2018-07-27T16:29:00.257Z","related":["SUSE-SU-2017:2937-1","openSUSE-SU-2024:11408-1"],"database_specific":{"unresolved_ranges":[{"cpes":["cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}],"vendor_product":"redhat:enterprise_linux_desktop"},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}],"vendor_product":"redhat:enterprise_linux_server"},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"last_affected":"7.4"}],"vendor_product":"redhat:enterprise_linux_server_aus"},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"last_affected":"7.4"},{"last_affected":"7.5"}],"vendor_product":"redhat:enterprise_linux_server_eus"},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}],"vendor_product":"redhat:enterprise_linux_workstation"}]},"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:3379"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:1877"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12173"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/sssd/sssd","events":[{"introduced":"0"},{"fixed":"2de0072db40ce90c9d376af38245cd1e0c9fa6ea"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"1.16.0"}],"cpe":"cpe:2.3:a:fedoraproject:sssd:*:*:*:*:*:*:*:*"}}],"versions":["sssd-1_15_3","sssd-1_15_2","sssd-1_15_1","sssd-1_15_0","sssd-1_14_2","sssd-1_14_1","sssd-1_14_0","sssd-1_14_0_beta1","sssd-1_13_91","sssd-1_14_0_alpha1","sssd-1_13_90","sssd-1_13_1","sssd-1_13_0","sssd-1_13_0_alpha","sssd-1_12_90","sssd-1_12_3","sssd-1_12_2","sssd-1_12_1","sssd-1_12_0","sssd-1_12_0_beta2","sssd-1_11_91","sssd-1_12_0_beta1","sssd-1_11_90","sssd-1_11_0","sssd-1_11_0_beta2","sssd-1_10_92","sssd-1_11_0_beta1","sssd-1_10_90","sssd-1_10_0","sssd-1_9_94","sssd-1_9_93","sssd-1_10_beta2","sssd-1_9_92","sssd-1_10_beta1","sssd-1_9_91","sssd-1_10_alpha1","sssd-1_9_2","sssd-1_9_1","sssd-1_9_0","sssd-1_9_0_rc1","sssd-1_8_98","sssd-1_9_0_beta7","sssd-1_8_97","sssd-1_9_0_beta6","sssd-1_8_96","sssd-1_9_0_beta5","sssd-1_8_95","sssd-1_9_0_beta4","sssd-1_8_94","sssd-1_9_0_beta3","sssd-1_8_93","sssd-1_9_0_beta2","sssd-1_8_92","sssd-1_9_0_beta1","sssd-1_8_91","sssd-1_6_0","sssd-1_5_1","sssd-1_5_0","sssd-1_4_0","sssd-1_3_0","sssd-1_2_91","sssd-1_0_99","sssd-0_99_0","sssd-0_7_0","sssd-0_6_0","sssd-0_5_0","sssd-0_4_1","sssd-0_4_0","sssd-0_3_3","sssd-0_3_2","sssd-0_3_1","sssd-0_2_1","sssd-0_2_0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-12173.json"}},{"ranges":[{"type":"GIT","repo":"https://pagure.io/SSSD/sssd","events":[{"introduced":"0"},{"fixed":"2de0072db40ce90c9d376af38245cd1e0c9fa6ea"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"1.16.0"}],"cpe":"cpe:2.3:a:fedoraproject:sssd:*:*:*:*:*:*:*:*"}}],"versions":["sssd-1_15_3","sssd-1_15_2","sssd-1_15_1","sssd-1_15_0","sssd-1_14_2","sssd-1_14_1","sssd-1_14_0","sssd-1_14_0_beta1","sssd-1_13_91","sssd-1_14_0_alpha1","sssd-1_13_90","sssd-1_13_1","sssd-1_13_0","sssd-1_13_0_alpha","sssd-1_12_90","sssd-1_12_3","sssd-1_12_2","sssd-1_12_1","sssd-1_12_0","sssd-1_12_0_beta2","sssd-1_11_91","sssd-1_12_0_beta1","sssd-1_11_90","sssd-1_11_0","sssd-1_11_0_beta2","sssd-1_10_92","sssd-1_11_0_beta1","sssd-1_10_90","sssd-1_10_0","sssd-1_9_94","sssd-1_9_93","sssd-1_10_beta2","sssd-1_9_92","sssd-1_10_beta1","sssd-1_9_91","sssd-1_10_alpha1","sssd-1_9_2","sssd-1_9_1","sssd-1_9_0","sssd-1_9_0_rc1","sssd-1_8_98","sssd-1_9_0_beta7","sssd-1_8_97","sssd-1_9_0_beta6","sssd-1_8_96","sssd-1_9_0_beta5","sssd-1_8_95","sssd-1_9_0_beta4","sssd-1_8_94","sssd-1_9_0_beta3","sssd-1_8_93","sssd-1_9_0_beta2","sssd-1_8_92","sssd-1_9_0_beta1","sssd-1_8_91","sssd-1_6_0","sssd-1_5_1","sssd-1_5_0","sssd-1_4_0","sssd-1_3_0","sssd-1_2_91","sssd-1_0_99","sssd-0_99_0","sssd-0_7_0","sssd-0_6_0","sssd-0_5_0","sssd-0_4_1","sssd-0_4_0","sssd-0_3_3","sssd-0_3_2","sssd-0_3_1","sssd-0_2_1","sssd-0_2_0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-12173.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}