Lucene search

IscCVELIST:CVE-2024-28872

HistoryJul 11, 2024 - 2:49 p.m.

CVE-2024-28872 Incorrect TLS certificate validation can lead to escalated privileges

2024-07-1114:49:12

isc

www.cve.org

tls certificate

stork server

escalated privileges

kea

bind 9

confidential data loss

denial of service

vulnerability

stork management tool

CVSS3

8.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H

EPSS

0.001

Percentile

39.4%

JSON

The TLS certificate validation code is flawed. An attacker can obtain a TLS certificate from the Stork server and use it to connect to the Stork agent. Once this connection is established with the valid certificate, the attacker can send malicious commands to a monitored service (Kea or BIND 9), possibly resulting in confidential data loss and/or denial of service. It should be noted that this vulnerability is not related to BIND 9 or Kea directly, and only customers using the Stork management tool are potentially affected.
This issue affects Stork versions 0.15.0 through 1.15.0.

CNA Affected

[
  {
    "vendor": "ISC",
    "product": "Stork",
    "versions": [
      {
        "version": "0.15.0",
        "lessThanOrEqual": "1.15.0",
        "status": "affected",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

kb.isc.org/docs/cve-2024-28872

CVSS3

8.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:H

EPSS

0.001

Percentile

39.4%

JSON

Related for CVELIST:CVE-2024-28872