CVE-2017-1000433
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
pysaml2 version 4.4.0 and older accept any password when run with python optimizations enabled. This allows attackers to log in as any user without knowing their password.
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2017-1000433
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2017-1000433.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 4.5.0-2 |
| debian | bullseye | fixed | 4.5.0-2 |
| debian | forky | fixed | 4.5.0-2 |
| debian | sid | fixed | 4.5.0-2 |
| debian | trixie | fixed | 4.5.0-2 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| PyPI | pysaml2 | <4.5.0 | 4.5.0 |
References
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000433
- https://github.com/rohe/pysaml2/issues/451
- https://github.com/IdentityPython/pysaml2/pull/454
- https://github.com/IdentityPython/pysaml2/commit/6312a41e037954850867f29d329e5007df1424a5
- https://github.com/advisories/GHSA-924m-4pmx-c67h
- https://github.com/pypa/advisory-database/tree/main/vulns/pysaml2/PYSEC-2018-48.yaml
- https://github.com/rohe/pysaml2
- https://lists.debian.org/debian-lts-announce/2018/07/msg00000.html
- https://lists.debian.org/debian-lts-announce/2021/02/msg00038.html
- https://security.gentoo.org/glsa/201801-11
- https://www.suse.com/security/cve/CVE-2017-1000433.html
- https://security-tracker.debian.org/tracker/CVE-2017-1000433
Verify integrity in audit chain (admin only). AS-IS.