Upstream reported that realmd joins any AD without performing authentication, which can lead to privileges escalation within specified domain: https://bugs.freedesktop.org/show_bug.cgi?id=89205 Suggested patches are available in the upstream bug above.
Created realmd tracking bugs for this issue: Affects: fedora-all [bug 1205753]
Created attachment 1014277 [details] Disable Automatic AD Jains Combined patch for this issue.
Note: MITRE does not intend to assign a cve id to it, because it seems to be accepted, intentional behaviour. Red Hat Product Security Team intends to handle this flaw as a hardening fix.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2015:2184 https://rhn.redhat.com/errata/RHSA-2015-2184.html