Lucene search
RedhatCVE-2023-4727HistoryJun 11, 2024 - 8:15 p.m.
CVE-2023-4727
2024-06-1120:15:09
CWE-305
redhat
web.nvd.nist.gov
31
dogtag-pki
pki-core
ldap injection
bypass
authentication
privilege escalation
CVSS3
7.5
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
10.4%
A flaw was found in dogtag-pki and pki-core. The token authentication scheme can be bypassed with a LDAP injection. By passing the query string parameter sessionID=*, an attacker can authenticate with an existing session saved in the LDAP directory server, which may lead to escalation of privilege.
CNA Affected
[
{
"vendor": "Red Hat",
"product": "Red Hat Certificate System 10.4 EUS for RHEL-8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "redhat-pki:10",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020240529205458.07fb4edf",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:certificate_system_eus:10.4::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core",
"defaultStatus": "affected",
"versions": [
{
"version": "0:10.5.18-32.el7_9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/o:redhat:enterprise_linux:7::server",
"cpe:/o:redhat:enterprise_linux:7::client",
"cpe:/o:redhat:enterprise_linux:7::computenode",
"cpe:/o:redhat:enterprise_linux:7::workstation"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8100020240614102443.82f485b7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020240329193548.17df0a3f",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020240329193548.17df0a3f",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020240329193548.17df0a3f",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020240329182634.60523a7b",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream",
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_tus:8.6::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020240329182634.60523a7b",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream",
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_tus:8.6::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020240329182634.60523a7b",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.6::appstream",
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_tus:8.6::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core:10.6",
"defaultStatus": "affected",
"versions": [
{
"version": "8080020240329143735.693a3987",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core",
"defaultStatus": "affected",
"versions": [
{
"version": "0:11.5.0-2.el9_4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core",
"defaultStatus": "affected",
"versions": [
{
"version": "0:11.0.6-3.el9_0",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core",
"defaultStatus": "affected",
"versions": [
{
"version": "0:11.3.0-2.el9_2",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Certificate System 10",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "redhat-pki:10/pki-core",
"defaultStatus": "affected",
"cpes": [
"cpe:/a:redhat:certificate_system:10"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "pki-core",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
}
]References
access.redhat.com/errata/RHSA-2024:4051
access.redhat.com/errata/RHSA-2024:4070
access.redhat.com/errata/RHSA-2024:4164
access.redhat.com/errata/RHSA-2024:4165
access.redhat.com/errata/RHSA-2024:4179
access.redhat.com/errata/RHSA-2024:4222
access.redhat.com/errata/RHSA-2024:4367
access.redhat.com/errata/RHSA-2024:4403
access.redhat.com/errata/RHSA-2024:4413
access.redhat.com/security/cve/CVE-2023-4727
bugzilla.redhat.com/show_bug.cgi?id=2232218
Related
osv
osv
Important: pki-core security update
2024-06-27 00:00:00
Important: pki-core security update
2024-07-08 00:00:00
Important: pki-core security update
2024-07-03 21:27:28
almalinux
almalinux
Important: pki-core security update
2024-07-08 00:00:00
Important: pki-core security update
2024-06-27 00:00:00
nessus
nessus
Oracle Linux 7 : pki-core (ELSA-2024-4222)
2024-07-02 00:00:00
RHEL 9 : pki-core (RHSA-2024:4165)
2024-06-27 00:00:00
RHEL 8 : pki-core (RHSA-2024:4179)
2024-07-01 00:00:00
amazon
amazon
Important: pki-core
2024-07-03 20:05:00
redhat
redhat
(RHSA-2024:4179) Important: pki-core security update
2024-07-01 00:58:06
(RHSA-2024:4165) Important: pki-core security update
2024-06-27 13:48:52
ubuntucve
ubuntucve
CVE-2023-4727
2024-06-11 00:00:00
debiancve
debiancve
CVE-2023-4727
2024-06-11 20:15:09
oraclelinux
oraclelinux
pki-core security update
2024-06-27 00:00:00
pki-core security update
2024-07-02 00:00:00
pki-core security update
2024-07-10 00:00:00
rocky
rocky
pki-core security update
2024-07-03 21:27:28
vulnrichment
vulnrichment
CVE-2023-4727 Ca: token authentication bypass vulnerability
2024-06-11 19:30:25
nvd
nvd
CVE-2023-4727
2024-06-11 20:15:09
redhatcve
redhatcve
CVE-2023-4727
2024-06-11 19:24:16
cvelist
cvelist
CVE-2023-4727 Ca: token authentication bypass vulnerability
2024-06-11 19:30:25
CVSS3
7.5
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
10.4%
Related for CVE-2023-4727