CVE Vulnerability

CVE-2021-32651

OneDev is a development operations platform. If the LDAP external authentication mechanism is enabled in OneDev versions 4.4.1 and prior, an attacker can manipulate a user search filter to send forged queries to the application and explore the LDAP tree using Blind LDAP Injection techniques. The specific payload depends on how the User Search Filter property is configured in OneDev. This issue was fixed in version 4.4.2.

4.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

Scope

4.3 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://github.com/theonedev/onedev/commit/4440f0c57e440488d7e653417b2547eaae8ad19c Patch Third Party Advisory
https://github.com/theonedev/onedev/security/advisories/GHSA-5864-2496-4xjf Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:onedev_project:onedev:*:*:*:*:*:*:*:*
Information

Published : 2021-06-01 06:15

Updated : 2021-06-16 02:28

NVD link : CVE-2021-32651

Mitre link : CVE-2021-32651

Products Affected
No products.
CWE
CWE-90

Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')