CVE-2023-3758
HIGH7.1EPSS 0.03%Published: 4/18/2024Modified: 5/10/2026
Description
A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.
Affected packages (1)
- Debian/sssdfrom 0, < 2.4.1-2+deb11u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.1 | CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |