Lucene search
OracleLinuxELSA-2024-3760HistoryJun 10, 2024 - 12:00 a.m.
ipa security update
2024-06-1000:00:00
linux.oracle.com
6
update
ipa
security
rhel-29926
offline brute force
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
36.5%
[4.6.8-5.0.1.el7_9.17]
- Blank out header-logo.png product-name.png
- Replace login-screen-logo.png [Orabug: 20362818]
[4.6.8-5.el7_9.17] - Resolves: RHEL-29926 ipa: user can obtain a hash of the passwords of all domain users and perform offline brute force
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | ipa | < 4.6.8-5.0.1.el7_9.17 | ipa-4.6.8-5.0.1.el7_9.17.src.rpm |
| oracle linux | 7 | src | ipa | < 4.6.8-5.0.1.el7_9.17 | ipa-4.6.8-5.0.1.el7_9.17.src.rpm |
| oracle linux | 7 | src | ipa | < 4.6.8-5.0.1.el7_9.17 | ipa-4.6.8-5.0.1.el7_9.17.src.rpm |
| oracle linux | 7 | aarch64 | ipa-client | < 4.6.8-5.0.1.el7_9.17 | ipa-client-4.6.8-5.0.1.el7_9.17.aarch64.rpm |
| oracle linux | 7 | aarch64 | ipa-client | < 4.6.8-5.0.1.el7_9.17 | ipa-client-4.6.8-5.0.1.el7_9.17.aarch64.rpm |
| oracle linux | 7 | noarch | ipa-client-common | < 4.6.8-5.0.1.el7_9.17 | ipa-client-common-4.6.8-5.0.1.el7_9.17.noarch.rpm |
| oracle linux | 7 | noarch | ipa-client-common | < 4.6.8-5.0.1.el7_9.17 | ipa-client-common-4.6.8-5.0.1.el7_9.17.noarch.rpm |
| oracle linux | 7 | noarch | ipa-common | < 4.6.8-5.0.1.el7_9.17 | ipa-common-4.6.8-5.0.1.el7_9.17.noarch.rpm |
| oracle linux | 7 | noarch | ipa-common | < 4.6.8-5.0.1.el7_9.17 | ipa-common-4.6.8-5.0.1.el7_9.17.noarch.rpm |
| oracle linux | 7 | noarch | ipa-python-compat | < 4.6.8-5.0.1.el7_9.17 | ipa-python-compat-4.6.8-5.0.1.el7_9.17.noarch.rpm |
Related
nessus
nessus
Oracle Linux 7 : ipa (ELSA-2024-3760)
2024-06-10 00:00:00
RHEL 8 : idm:DL1 (RHSA-2024:3758)
2024-06-10 00:00:00
RHEL 9 : ipa (RHSA-2024:3761)
2024-06-10 00:00:00
redhat
redhat
(RHSA-2024:3760) Important: ipa security update
2024-06-10 13:35:42
(RHSA-2024:3756) Important: idm:DL1 security update
2024-06-10 13:35:05
(RHSA-2024:3758) Important: idm:DL1 security update
2024-06-10 13:35:20
vulnrichment
vulnrichment
amazon
amazon
Important: ipa
2024-07-03 20:05:00
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2024-3183
2024-06-12 00:00:00
redos
redos
ROS-20240918-08
2024-09-18 00:00:00
redhatcve
redhatcve
CVE-2024-3183
2024-06-12 00:39:26
githubexploit
githubexploit
osv
osv
CVE-2024-3183
2024-06-12 09:15:18
Important: idm:DL1 security update
2024-06-10 00:00:00
Important: ipa security update
2024-06-14 14:00:35
debiancve
debiancve
CVE-2024-3183
2024-06-12 09:15:18
nvd
nvd
CVE-2024-3183
2024-06-12 09:15:18
cve
cve
CVE-2024-3183
2024-06-12 09:15:18
fedora
fedora
[SECURITY] Fedora 39 Update: freeipa-4.12.1-1.fc39
2024-06-29 01:42:16
[SECURITY] Fedora 40 Update: freeipa-4.12.1-1.fc40
2024-06-27 02:03:49
oraclelinux
oraclelinux
idm:DL1 security update
2024-06-11 00:00:00
ipa security update
2024-06-10 00:00:00
almalinux
almalinux
Important: idm:DL1 security update
2024-06-10 00:00:00
Important: ipa security update
2024-06-10 00:00:00
rocky
rocky
idm:DL1 security update
2024-06-14 13:59:30
ipa security update
2024-06-14 14:00:35
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-1d1b485611)
2024-08-06 00:00:00
Fedora: Security Advisory (FEDORA-2024-2a466c6514)
2024-06-27 00:00:00
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
36.5%
Related for ELSA-2024-3760