{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/86728?format=json","vulnerability_id":"VCID-wz3w-7eag-83ft","summary":"sssd: simple access provider flaw prevents intended ACL use when client to an AD provider","aliases":[{"alias":"CVE-2013-0287"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/940021?format=json","purl":"pkg:deb/debian/sssd@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/sssd@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/940022?format=json","purl":"pkg:deb/debian/sssd@2.4.1-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ztj4-pvvh-wuay"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/sssd@2.4.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/940020?format=json","purl":"pkg:deb/debian/sssd@2.8.2-4%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ztj4-pvvh-wuay"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/sssd@2.8.2-4%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/940024?format=json","purl":"pkg:deb/debian/sssd@2.10.1-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ztj4-pvvh-wuay"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/sssd@2.10.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/940023?format=json","purl":"pkg:deb/debian/sssd@2.12.0-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/sssd@2.12.0-4%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/124620?format=json","purl":"pkg:rpm/redhat/sssd@1.9.2-82.4?arch=el6_4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-wz3w-7eag-83ft"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/sssd@1.9.2-82.4%3Farch=el6_4"}],"references":[{"reference_url":"http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=910938","reference_id":"","reference_type":"","scores":[],"url":"http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=910938"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=26590d31f492dbbd36be6d0bde46a4bd3b221edb","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=26590d31f492dbbd36be6d0bde46a4bd3b221edb"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=6569d57e3bc168e6e83d70333b48c5cb43aa04c4","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=6569d57e3bc168e6e83d70333b48c5cb43aa04c4"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=6837eee3f7f81c0ee454d3718d67d7f3cc6b48ef","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=6837eee3f7f81c0ee454d3718d67d7f3cc6b48ef"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=754b09b5444e6da88ed58d6deaed8b815e268b6b","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=754b09b5444e6da88ed58d6deaed8b815e268b6b"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=7619be9f6bf649665fcbeee9e6b120f9f9cba2a5","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=7619be9f6bf649665fcbeee9e6b120f9f9cba2a5"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=8b8019fe3dd1564fba657e219ec20ff816c7ffdb","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=8b8019fe3dd1564fba657e219ec20ff816c7ffdb"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=b63830b142053f99bfe954d4be5a2b0f68ce3a93","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=b63830b142053f99bfe954d4be5a2b0f68ce3a93"},{"reference_url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=c0bca1722d6f9dfb654ad78397be70f79ff39af1","reference_id":"","reference_type":"","scores":[],"url":"http://git.fedorahosted.org/cgit/sssd.git/patch/?id=c0bca1722d6f9dfb654ad78397be70f79ff39af1"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2013-03/msg00115.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-updates/2013-03/msg00115.html"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2013-0663.html","reference_id":"","reference_type":"","scores":[],"url":"http://rhn.redhat.com/errata/RHSA-2013-0663.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0287.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0287.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0287","reference_id":"","reference_type":"","scores":[{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64408","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64364","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64242","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64299","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64327","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64284","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64332","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64347","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64359","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64348","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64319","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64354","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64365","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64355","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64376","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.64389","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00464","scoring_system":"epss","scoring_elements":"0.6439","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0287"},{"reference_url":"http://secunia.com/advisories/52704","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/52704"},{"reference_url":"http://secunia.com/advisories/52722","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/52722"},{"reference_url":"http://securitytracker.com/id?1028317","reference_id":"","reference_type":"","scores":[],"url":"http://securitytracker.com/id?1028317"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.fedorahosted.org/pipermail/sssd-devel/2013-March/014066.html","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedorahosted.org/pipermail/sssd-devel/2013-March/014066.html"},{"reference_url":"http://www.securityfocus.com/bid/58593","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/58593"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=910938","reference_id":"910938","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=910938"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:fedoraproject:sssd:1.9.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:fedoraproject:sssd:1.9.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:fedoraproject:sssd:1.9.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-0287","reference_id":"CVE-2013-0287","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:P/A:N"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-0287"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0663","reference_id":"RHSA-2013:0663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0663"}],"weaknesses":[{"cwe_id":264,"name":"Permissions, Privileges, and Access Controls","description":"Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control."}],"exploits":[],"severity_range_score":"4.9 - 4.9","exploitability":"0.5","weighted_severity":"4.4","risk_score":2.2,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wz3w-7eag-83ft"}