Lucene search
VulnCheckCVELIST:CVE-2024-22047HistoryJan 04, 2024 - 8:32 p.m.
CVE-2024-22047 Audited Log Integrity Errors Due to Race Condition
2024-01-0420:32:02
CWE-362
VulnCheck
www.cve.org
cve-2024-22047
audited
log integrity
race condition
authenticated user
3.1 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.1%
A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.
CNA Affected
[
{
"collectionURL": "https://rubygems.org",
"defaultStatus": "unaffected",
"packageName": "audited",
"versions": [
{
"lessThan": "5.3.3",
"status": "affected",
"version": "4.0.0",
"versionType": "semver"
}
]
}
]References
Related
redhatcve
redhatcve
CVE-2024-22047
2024-01-05 02:00:41
veracode
veracode
Race Condition
2024-01-05 10:27:00
osv
osv
Race Condition leading to logging errors
2023-05-01 14:00:47
CVE-2024-22047
2024-01-04 21:15:09
nvd
nvd
CVE-2024-22047
2024-01-04 21:15:09
github
github
Race Condition leading to logging errors
2023-05-01 14:00:47
cve
cve
CVE-2024-22047
2024-01-04 21:15:09
prion
prion
Race condition
2024-01-04 21:15:00
nessus
nessus
RHEL 8 : Satellite 6.15.0 (Important) (RHSA-2024:2010)
2024-06-03 00:00:00
redhat
redhat
(RHSA-2024:2010) Important: Satellite 6.15.0 release
2024-04-23 17:00:52
3.1 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.1%
Related for CVELIST:CVE-2024-22047