{
  "threat_severity" : "Low",
  "public_date" : "2018-12-19T00:00:00Z",
  "bugzilla" : {
    "description" : "sssd: Information leak in infopipe due to an improper uid restriction",
    "id" : "1659862",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1659862"
  },
  "cvss3" : {
    "cvss3_base_score" : "2.5",
    "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
    "status" : "draft"
  },
  "cwe" : "CWE-200",
  "details" : [ "sssd versions from 1.13.0 to before 2.0.0 did not properly restrict access to the infopipe according to the \"allowed_uids\" configuration parameter. If sensitive information were stored in the user directory, this could be inadvertently disclosed to local attackers.", "sssd, versions 1.13.0 to before 2.0.0, did not properly restrict access to the infopipe according to the \"allowed_uids\" configuration parameter. Sensitive information could be inadvertently disclosed to local attackers if it was stored in the user directory." ],
  "statement" : "The information exposed by this vulnerability is typically not highly sensitive.  By default, it is only those fields returned by getpwent() and getgrent().",
  "acknowledgement" : "This issue was discovered by Christian Heimes (Red Hat).",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "sssd",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Will not fix",
    "package_name" : "sssd",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Fix deferred",
    "package_name" : "sssd",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "sssd",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-16883\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-16883" ],
  "name" : "CVE-2018-16883",
  "mitigation" : {
    "value" : "This vulnerability is only exposed if the infopipe service is enabled (enabled by default in Red Hat Enterprise Linux 7, disabled by default in Red Hat Enterprise Linux 6), and `[ifp].allowed_uids` is relied upon to protect sensitive information in the user directory.",
    "lang" : "en:us"
  },
  "csaw" : false
}