{"id":"UBUNTU-CVE-2023-44469","details":"A Server-Side Request Forgery issue in the OpenID Connect Issuer in LemonLDAP::NG before 2.17.1 allows authenticated remote attackers to send GET requests to arbitrary URLs through the request_uri authorization parameter. This is similar to CVE-2020-10770.","modified":"2025-10-24T05:02:17Z","published":"2023-09-29T07:15:00Z","upstream":["CVE-2023-44469"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-44469"},{"type":"REPORT","url":"https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/2998"},{"type":"REPORT","url":"https://security.lauritz-holtmann.de/post/sso-security-ssrf/"},{"type":"REPORT","url":"https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/releases/v2.17.1"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2023-44469"}],"affected":[{"package":{"name":"lemonldap-ng","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/lemonldap-ng@1.4.6-3?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.3.3-1","1.4.6-1","1.4.6-2","1.4.6-3"],"ecosystem_specific":{"binaries":[{"binary_name":"lemonldap-ng","binary_version":"1.4.6-3"},{"binary_name":"liblemonldap-ng-common-perl","binary_version":"1.4.6-3"},{"binary_name":"liblemonldap-ng-conf-perl","binary_version":"1.4.6-3"},{"binary_name":"liblemonldap-ng-handler-perl","binary_version":"1.4.6-3"},{"binary_name":"liblemonldap-ng-manager-perl","binary_version":"1.4.6-3"},{"binary_name":"liblemonldap-ng-portal-perl","binary_version":"1.4.6-3"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-44469.json"}},{"package":{"name":"lemonldap-ng","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/lemonldap-ng@1.9.16-2?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.9.10-1","1.9.13-2","1.9.14-1","1.9.15-1","1.9.16-2"],"ecosystem_specific":{"binaries":[{"binary_name":"lemonldap-ng","binary_version":"1.9.16-2"},{"binary_name":"lemonldap-ng-fastcgi-server","binary_version":"1.9.16-2"},{"binary_name":"lemonldap-ng-handler","binary_version":"1.9.16-2"},{"binary_name":"liblemonldap-ng-common-perl","binary_version":"1.9.16-2"},{"binary_name":"liblemonldap-ng-handler-perl","binary_version":"1.9.16-2"},{"binary_name":"liblemonldap-ng-manager-perl","binary_version":"1.9.16-2"},{"binary_name":"liblemonldap-ng-portal-perl","binary_version":"1.9.16-2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-44469.json"}},{"package":{"name":"lemonldap-ng","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/lemonldap-ng@2.0.7+ds-2?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["2.0.5+ds-2","2.0.6+ds-2","2.0.7+ds-2"],"ecosystem_specific":{"binaries":[{"binary_name":"lemonldap-ng","binary_version":"2.0.7+ds-2"},{"binary_name":"lemonldap-ng-fastcgi-server","binary_version":"2.0.7+ds-2"},{"binary_name":"lemonldap-ng-handler","binary_version":"2.0.7+ds-2"},{"binary_name":"lemonldap-ng-uwsgi-app","binary_version":"2.0.7+ds-2"},{"binary_name":"liblemonldap-ng-common-perl","binary_version":"2.0.7+ds-2"},{"binary_name":"liblemonldap-ng-handler-perl","binary_version":"2.0.7+ds-2"},{"binary_name":"liblemonldap-ng-manager-perl","binary_version":"2.0.7+ds-2"},{"binary_name":"liblemonldap-ng-portal-perl","binary_version":"2.0.7+ds-2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-44469.json"}},{"package":{"name":"lemonldap-ng","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/lemonldap-ng@2.0.13+ds-3ubuntu1?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["2.0.11+ds-4","2.0.13+ds-3","2.0.13+ds-3ubuntu1"],"ecosystem_specific":{"binaries":[{"binary_name":"lemonldap-ng","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"lemonldap-ng-fastcgi-server","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"lemonldap-ng-handler","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"lemonldap-ng-uwsgi-app","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"liblemonldap-ng-common-perl","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"liblemonldap-ng-handler-perl","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"liblemonldap-ng-manager-perl","binary_version":"2.0.13+ds-3ubuntu1"},{"binary_name":"liblemonldap-ng-portal-perl","binary_version":"2.0.13+ds-3ubuntu1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-44469.json"}},{"package":{"name":"lemonldap-ng","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/lemonldap-ng@2.18.2+ds-1?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["2.16.2+ds-1","2.17.1+ds-1","2.17.2+ds-1","2.17.2+ds-2","2.18.1+ds-1","2.18.2+ds-1"],"ecosystem_specific":{"binaries":[{"binary_name":"lemonldap-ng","binary_version":"2.18.2+ds-1"},{"binary_name":"lemonldap-ng-fastcgi-server","binary_version":"2.18.2+ds-1"},{"binary_name":"lemonldap-ng-handler","binary_version":"2.18.2+ds-1"},{"binary_name":"lemonldap-ng-uwsgi-app","binary_version":"2.18.2+ds-1"},{"binary_name":"liblemonldap-ng-common-perl","binary_version":"2.18.2+ds-1"},{"binary_name":"liblemonldap-ng-handler-perl","binary_version":"2.18.2+ds-1"},{"binary_name":"liblemonldap-ng-manager-perl","binary_version":"2.18.2+ds-1"},{"binary_name":"liblemonldap-ng-portal-perl","binary_version":"2.18.2+ds-1"},{"binary_name":"liblemonldap-ng-ssoaas-apache-client-perl","binary_version":"2.18.2+ds-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-44469.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"type":"Ubuntu","score":"medium"}]}