Lucene search
Redhat.comRH:CVE-2024-0822HistoryJan 24, 2024 - 3:33 p.m.
CVE-2024-0822
2024-01-2415:33:57
redhat.com
access.redhat.com
18
cve-2024-0822
authentication bypass
user creation
flaw
createusersession
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
33.3%
An authentication bypass vulnerability was found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command.
Related
vulnrichment
vulnrichment
CVE-2024-0822 Ovirt: authentication bypass
2024-01-25 15:18:20
prion
prion
Authentication flaw
2024-01-25 16:15:00
nessus
nessus
RHEL 8 : Red Hat Virtualization (RHSA-2024:0934)
2024-02-21 00:00:00
nvd
nvd
CVE-2024-0822
2024-01-25 16:15:08
cvelist
cvelist
CVE-2024-0822 Ovirt: authentication bypass
2024-01-25 15:18:20
cve
cve
CVE-2024-0822
2024-01-25 16:15:08
redhat
redhat
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
33.3%
Related for RH:CVE-2024-0822