CVE-2020-9495
First published: Fri Jun 19 2020(Updated: )
Apache Archiva login service before 2.2.5 is vulnerable to LDAP injection. A attacker is able to retrieve user attribute data from the connected LDAP server by providing special values to the login form. With certain characters it is possible to modify the LDAP filter used to query the LDAP users. By measuring the response time for the login request, arbitrary attribute data can be retrieved from LDAP user objects.
Credit: security@apache.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache Archiva | <2.2.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archiva.apache.org/security.html#CVE-2020-9495
- http://www.openwall.com/lists/oss-security/2020/06/19/1
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d@%3Cannounce.apache.org%3E
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d@%3Cdev.archiva.apache.org%3E
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d@%3Cusers.archiva.apache.org%3E
- https://lists.apache.org/thread.html/r7ae580f700ade57b00641a70a5c639a3ba576893bbf7f9fd93bc491d@%3Cusers.maven.apache.org%3E
- https://lists.apache.org/thread.html/r7ae580f700ade57b00641a70a5c639a3ba576893bbf7f9fd93bc491d%40%3Cusers.maven.apache.org%3E
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d%40%3Cdev.archiva.apache.org%3E
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d%40%3Cusers.archiva.apache.org%3E
- https://lists.apache.org/thread.html/r576eaabe3f772c045ec832a0200252494a2ce3f188f59450dd8f9b6d%40%3Cannounce.apache.org%3E
Frequently Asked Questions
What is CVE-2020-9495?
CVE-2020-9495 is a vulnerability in the Apache Archiva login service before version 2.2.5 that allows an attacker to perform LDAP injection.
How does CVE-2020-9495 work?
CVE-2020-9495 allows an attacker to retrieve user attribute data from the connected LDAP server by modifying the LDAP filter used in the login form.
What is the severity level of CVE-2020-9495?
CVE-2020-9495 has a severity level of medium with a CVSS score of 5.3.
How can I fix the CVE-2020-9495 vulnerability in Apache Archiva?
To fix the CVE-2020-9495 vulnerability, update Apache Archiva to version 2.2.5 or later.
Where can I find more information about CVE-2020-9495?
You can find more information about CVE-2020-9495 on the Apache Archiva security page and the provided references.
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/tags
- agent/source
- vendor/apache
- canonical/apache archiva