LDAP Bind Credentials Exposure in KACE Systems Deployment Appliances
CVE-2023-33254

6.5MEDIUM

Key Information:

Vendor: Quest
Status: Kace Systems Deployment Appliance
Vendor: CVE Published:; 21 May 2023

What is CVE-2023-33254?

A vulnerability exists in KACE Systems Deployment and Remote Site appliances where LDAP bind credentials can be exposed. This occurs when an authenticated user modifies user-authentication settings to redirect LDAP requests to a malicious server. By testing these settings, cleartext credentials may be captured, potentially granting elevated privileges within the Active Directory domain. Properly securing LDAP configurations and monitoring authentication attempts are crucial to mitigating risks associated with this vulnerability.

References

https://www.stevencampbell.info/KACE-LDAP-Bind-Credential...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2023
Vulnerability Reserved
May 21, 2023

Quest

What is CVE-2023-33254?

References

CVSS V3.1

Timeline