Zavier Lee

**Name of the Vulnerable Software and Affected Versions** System Security Services Daemon (SSSD) (affected versions not specified) **Description** A security issue exists in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. By default, SSSD does not enable the Kerberos local authentication plugin (`sssd krb5 localauth plugin`). This allows an attacker who can modify specific Active Directory attributes, such as `userPrincipalName` or `samAccountName`, to impersonate privileged users. Successful exploitation can lead to unauthorized access or privilege escalation on domain-joined Linux hosts. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.