CVE-2020-9495
Injection in Apache Archiva
5.3
MEDIUM
CVSS 3.1
EPSS 27.5%
Description
Apache Archiva login service before 2.2.5 is vulnerable to LDAP injection. A attacker is able to retrieve user attribute data from the connected LDAP server by providing special values to the login form. With certain characters it is possible to modify the LDAP filter used to query the LDAP users. By measuring the response time for the login request, arbitrary attribute data can be retrieved from LDAP user objects.
How to fix CVE-2020-9495
To remediate CVE-2020-9495, upgrade the affected package to a fixed version below.
- —upgrade to 2.2.5 or later
Is CVE-2020-9495 being exploited?
Moderate — EPSS is 27.5%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 2.2.5
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
References (7)
- ADVISORYnvd.nist.gov/vuln/detail/CVE-2020-9495
- WEBarchiva.apache.org/security.html#CVE-2020-9495
- WEBlists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d@%3Cannounce.apache.org%3E
- WEBlists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d@%3Cdev.archiva.apache.org%3E