Fluid Attacks Database

Description

LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory. In versions prior to 8.0 the tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host. This issue has been fixed in version 8.0. Users unable to upgrade should disallow executing PHP scripts in (/var/lib/ldap-account-manager/)tmp directory.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	ldap-account-manager	>=0 <8.0.1-1	8.0.1-1
debian 11	ldap-account-manager	=7.4-1 \|\| =7.5-1 \|\| =7.7-1 \|\| =7.9-1 \|\| =7.9.1-1 \|\| >=0 <8.0.1-0+deb11u1	8.0.1-0+deb11u1
debian 13	ldap-account-manager	>=0 <8.0.1-1	8.0.1-1

Aliases

1. CVE-2022-310872. NVD-2022-310873. OSV-DEBIAN-2022-310874. OSV-2022-310875. SECURITY-TRACKER-CVE-2022-31087

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.