Detections
Analytics
Debian dla-3979 : lemonldap-ng - security update
medium Nessus Plugin ID 211976
Language:
Synopsis
The remote Debian host is missing one or more security-related updates.Description
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3979 advisory.------------------------------------------------------------------------- Debian LTS Advisory DLA-3979-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin November 30, 2024 https://wiki.debian.org/LTS
-------------------------------------------------------------------------
Package : lemonldap-ng Version : 2.0.11+ds-4+deb11u6 CVE ID : CVE-2024-48933 CVE-2024-52946 CVE-2024-52947 Debian Bug : 1084979
Multiple vulnerabilities were discovered in Lemonldap::NG, an OpenID-Connect, CAS and SAML compatible Web-SSO system, which could lead to injection of arbitrary scripts or authorization bypass.
CVE-2024-48933
Cross-site scripting (XSS) vulnerability which allows remote attackers to inject arbitrary web script or HTML into the login page via a username if userControl has been set to a non-default value that allows special HTML characters.
CVE-2024-52946
Improper Check during session refresh which allows an authenticated user to raise their authentication level if the admin configured an Adaptative authentication rule with an increment instead of an absolute value.
CVE-2024-52947
Cross-site scripting (XSS) vulnerability which allows remote attackers to inject arbitrary web script or HTML via the url parameter of the upgrade session confirmation page (upgradeSession) if the Upgrade session plugin has been enabled by an admin.
For Debian 11 bullseye, these problems have been fixed in version 2.0.11+ds-4+deb11u6.
We recommend that you upgrade your lemonldap-ng packages.
For the detailed security status of lemonldap-ng please refer to its security tracker page at:
https://security-tracker.debian.org/tracker/lemonldap-ng
Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS Attachment:
signature.asc Description: PGP signature
Tenable has extracted the preceding description block directly from the Debian security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade the lemonldap-ng packages.See Also
http://www.nessus.org/u?9f8cb51e
https://security-tracker.debian.org/tracker/CVE-2024-48933
https://security-tracker.debian.org/tracker/CVE-2024-52946
Plugin Details
Severity: Medium
ID: 211976
File Name: debian_DLA-3979.nasl
Version: 1.1
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 11/30/2024
Updated: 11/30/2024
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 4.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2024-48933
CVSS v3
Risk Factor: Medium
Base Score: 6.1
Temporal Score: 5.3
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:debian:debian_linux:lemonldap-ng, p-cpe:/a:debian:debian_linux:liblemonldap-ng-portal-perl, cpe:/o:debian:debian_linux:11.0, p-cpe:/a:debian:debian_linux:lemonldap-ng-handler, p-cpe:/a:debian:debian_linux:liblemonldap-ng-manager-perl, p-cpe:/a:debian:debian_linux:lemonldap-ng-fastcgi-server, p-cpe:/a:debian:debian_linux:liblemonldap-ng-handler-perl, p-cpe:/a:debian:debian_linux:lemonldap-ng-uwsgi-app, p-cpe:/a:debian:debian_linux:liblemonldap-ng-common-perl, p-cpe:/a:debian:debian_linux:lemonldap-ng-doc
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 11/30/2024
Vulnerability Publication Date: 10/9/2024