← back
CVE-2017-7488

CVE-2017-7488

EPSS 1.4%
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
Affected products
authconfig · authconfig

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/errata/RHSA-2017:2285https://bugzilla.redhat.com/show_bug.cgi?id=1441604https://pagure.io/authconfig/c/0972f61ad4b5657ed89cf953e8f58f6513096224?branch=masterhttp://www.securityfocus.com/bid/101784