CVE-2023-4727
Ca: token authentication bypass vulnerability
A flaw was found in dogtag-pki and pki-core. The token authentication scheme can be bypassed with a LDAP injection. By passing the query string parameter sessionID=*, an attacker can authenticate with an existing session saved in the LDAP directory server, which may lead to escalation of privilege.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
keycloakRed Hat · Red Hat Certificate System 10.4 EUS for RHEL-8Red Hat · Red Hat Enterprise Linux 6Red Hat · Red Hat Enterprise Linux 7Red Hat · Red Hat Enterprise Linux 8Red Hat · Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update SupportRed Hat · Red Hat Enterprise Linux 8.4 Telecommunications Update ServiceRed Hat · Red Hat Enterprise Linux 8.4 Update Services for SAP SolutionsRed Hat · Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update SupportRed Hat · Red Hat Enterprise Linux 8.6 Telecommunications Update ServiceRed Hat · Red Hat Enterprise Linux 8.6 Update Services for SAP SolutionsRed Hat · Red Hat Enterprise Linux 8.8 Extended Update SupportRed Hat · Red Hat Enterprise Linux 9Red Hat · Red Hat Enterprise Linux 9.0 Update Services for SAP SolutionsRed Hat · Red Hat Enterprise Linux 9.2 Extended Update Support¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://access.redhat.com/errata/RHSA-2024:4051https://access.redhat.com/errata/RHSA-2024:4070https://access.redhat.com/errata/RHSA-2024:4164https://access.redhat.com/errata/RHSA-2024:4165https://access.redhat.com/errata/RHSA-2024:4179https://access.redhat.com/errata/RHSA-2024:4222https://access.redhat.com/errata/RHSA-2024:4367https://access.redhat.com/errata/RHSA-2024:4403https://access.redhat.com/errata/RHSA-2024:4413https://access.redhat.com/security/cve/CVE-2023-4727https://bugzilla.redhat.com/show_bug.cgi?id=2232218