{"api_version":"1","generated_at":"2026-04-23T03:24:41+00:00","cve":"CVE-2017-12169","urls":{"html":"https://cve.report/CVE-2017-12169","api":"https://cve.report/api/cve/CVE-2017-12169.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2017-12169","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2017-12169"},"summary":{"title":"CVE-2017-12169","description":"It was found that FreeIPA 4.2.0 and later could disclose password hashes to users having the 'System: Read Stage Users' permission. A remote, authenticated attacker could potentially use this flaw to disclose the password hashes belonging to Stage Users. This security issue does not result in disclosure of password hashes belonging to active standard users. NOTE: some developers feel that this report is a suggestion for a design change to Stage User activation, not a statement of a vulnerability.","state":"PUBLIC","assigner":"secalert@redhat.com","published_at":"2018-01-10 15:29:00","updated_at":"2018-04-17 01:29:00"},"problem_types":["CWE-200"],"metrics":[],"references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1487697","name":"https://bugzilla.redhat.com/show_bug.cgi?id=1487697","refsource":"CONFIRM","tags":["Issue Tracking","Third Party Advisory"],"title":"1487697 – (CVE-2017-12169) CVE-2017-12169 ipa: Password hash disclosure via 'System: Read Stage Users' permission","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/102136","name":"102136","refsource":"BID","tags":["Third Party Advisory","VDB Entry"],"title":"FreeIPA CVE-2017-12169 Information Disclosure Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2017-12169","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-12169","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2017","cve_id":"12169","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"freeipa","cpe5":"freeipa","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"12169","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"freeipa","cpe5":"freeipa","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_version":"4.0","data_type":"CVE","data_format":"MITRE","CVE_data_meta":{"ID":"CVE-2017-12169","ASSIGNER":"secalert@redhat.com","STATE":"PUBLIC"},"description":{"description_data":[{"lang":"eng","value":"It was found that FreeIPA 4.2.0 and later could disclose password hashes to users having the 'System: Read Stage Users' permission. A remote, authenticated attacker could potentially use this flaw to disclose the password hashes belonging to Stage Users. This security issue does not result in disclosure of password hashes belonging to active standard users. NOTE: some developers feel that this report is a suggestion for a design change to Stage User activation, not a statement of a vulnerability."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-200","cweId":"CWE-200"}]}]},"affects":{"vendor":{"vendor_data":[{"vendor_name":"FreeIPA","product":{"product_data":[{"product_name":"ipa","version":{"version_data":[{"version_affected":"=","version_value":"4.2.0 and later"}]}}]}}]}},"references":{"reference_data":[{"url":"http://www.securityfocus.com/bid/102136","refsource":"MISC","name":"http://www.securityfocus.com/bid/102136"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1487697","refsource":"MISC","name":"https://bugzilla.redhat.com/show_bug.cgi?id=1487697"}]}},"nvd":{"publishedDate":"2018-01-10 15:29:00","lastModifiedDate":"2018-04-17 01:29:00","problem_types":["CWE-200"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":7.5,"baseSeverity":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":4},"severity":"MEDIUM","exploitabilityScore":8,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:freeipa:freeipa:*:*:*:*:*:*:*:*","versionStartIncluding":"4.2.0","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2017","CveId":"12169","Ordinal":"109316","Title":"CVE-2017-12169","CVE":"CVE-2017-12169","Year":"2017"},"notes":[{"CveYear":"2017","CveId":"12169","Ordinal":"1","NoteData":"It was found that FreeIPA 4.2.0 and later could disclose password hashes to users having the 'System: Read Stage Users' permission. A remote, authenticated attacker could potentially use this flaw to disclose the password hashes belonging to Stage Users. This security issue does not result in disclosure of password hashes belonging to active standard users. NOTE: some developers feel that this report is a suggestion for a design change to Stage User activation, not a statement of a vulnerability.","Type":"Description","Title":null},{"CveYear":"2017","CveId":"12169","Ordinal":"2","NoteData":"2018-01-10","Type":"Other","Title":"Published"},{"CveYear":"2017","CveId":"12169","Ordinal":"3","NoteData":"2018-04-16","Type":"Other","Title":"Modified"}]}}}