Information Exposure Vulnerability in Authconfig Version 6.2.8: Username Leak via SSSD Authentication

Information Exposure Vulnerability in Authconfig Version 6.2.8: Username Leak via SSSD Authentication

CVE-2017-7488 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.

Learn more about our Cis Benchmark Audit For Server Software.