Moonraker LDAP Search Filter Injection Vulnerability

A vulnerability allowing LDAP search filter injection has been identified in Moonraker versions prior to 0.10.0. This issue affects instances with the 'ldap' component enabled, where the login endpoint can be exploited. The vulnerability allows attackers to manipulate LDAP search filters, potentially leading to unauthorized discovery of LDAP entries, such as user IDs and attributes. The 401 error response can be used to gauge the success of the injection, facilitating brute force attacks to extract LDAP data.

Impact

Exploitation of this vulnerability could result in unauthorized access to LDAP entries, including user IDs and attributes, through injection techniques that manipulate LDAP search filters.

Remediation

Users are advised to upgrade to Moonraker version 0.10.0 or later, which addresses this vulnerability. For those unable to upgrade, the 'ldap' section can be removed from 'moonraker.conf' and the built-in user authentication can be used instead.