0.002 Low
EPSS
Percentile
51.9%
sssd is vulnerable to command injection. The vulnerability exists due to the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire subcommands.
access.redhat.com/errata/RHSA-2021:3178
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1975142
sssd.io/release-notes/sssd-2.6.0.html