Authentication bypass in Bareos
CVE-2020-4042

6.8MEDIUM

Key Information:

Vendor: Bareos
Status: Bareos
Vendor: CVE Published:; 10 July 2020

What is CVE-2020-4042?

Bareos before version 19.2.8 and earlier allows a malicious client to communicate with the director without knowledge of the shared secret if the director allows client initiated connection and connects to the client itself. The malicious client can replay the Bareos director's cram-md5 challenge to the director itself leading to the director responding to the replayed challenge. The response obtained is then a valid reply to the directors original challenge. This is fixed in version 19.2.8.

Affected Version(s)

bareos < 19.2.8

References

https://github.com/bareos/bareos/security/advisories/GHSA...

x_refsource_CONFIRM

https://bugs.bareos.org/view.php?id=1250

x_refsource_MISC

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2020
Vulnerability Reserved
Dec 30, 2019