Lucene search
HistoryJan 04, 2024 - 9:15 p.m.
CVE-2024-22047
audited
race condition
authenticated user
audit log entries
3.1 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.1%
A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.
Affected configurations
Node
collectiveideaauditedRange4.0.0–5.3.3
References
Related
redhatcve
redhatcve
CVE-2024-22047
2024-01-05 02:00:41
osv
osv
Race Condition leading to logging errors
2023-05-01 14:00:47
CVE-2024-22047
2024-01-04 21:15:09
cve
cve
CVE-2024-22047
2024-01-04 21:15:09
prion
prion
Race condition
2024-01-04 21:15:00
cvelist
cvelist
CVE-2024-22047 Audited Log Integrity Errors Due to Race Condition
2024-01-04 20:32:02
github
github
Race Condition leading to logging errors
2023-05-01 14:00:47
veracode
veracode
Race Condition
2024-01-05 10:27:00
redhat
redhat
(RHSA-2024:2010) Important: Satellite 6.15.0 release
2024-04-23 17:00:52
nessus
nessus
RHEL 8 : Satellite 6.15.0 (Important) (RHSA-2024:2010)
2024-06-03 00:00:00
3.1 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
35.1%
Related for NVD:CVE-2024-22047