CVE-2024-10963

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-10963
A flaw was found in pam_access, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the system by pretending to be a trusted hostname, gaining unauthorized access. This issue poses a risk for systems that rely on this feature to control who can access certain services or terminals.

7.4 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://access.redhat.com/security/cve/CVE-2024-10963
https://bugzilla.redhat.com/show_bug.cgi?id=2324291
Configurations

No configuration.

History

11 Nov 2024, 18:15

Type Values Removed Values Added
Summary (en) A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as hostnames. This flaw allows attackers to bypass access restrictions by spoofing hostnames, undermining configurations designed to limit access to specific TTYs or services. The flaw poses a risk in environments relying on these configurations for local access control. (en) A flaw was found in pam_access, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the system by pretending to be a trusted hostname, gaining unauthorized access. This issue poses a risk for systems that rely on this feature to control who can access certain services or terminals.

08 Nov 2024, 19:01

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en pam_access debido al manejo inadecuado de tokens en access.conf, interpretados como nombres de host. Esta falla permite a los atacantes eludir las restricciones de acceso falsificando nombres de host, lo que debilita las configuraciones diseñadas para limitar el acceso a TTY o servicios específicos. La falla plantea un riesgo en entornos que dependen de estas configuraciones para el control de acceso local.

08 Nov 2024, 07:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.5 		v2 : unknown
v3 : 7.4

07 Nov 2024, 16:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-11-07 16:15

Updated : 2024-11-11 18:15

NVD link : CVE-2024-10963

Mitre link : CVE-2024-10963

CVE.ORG link : CVE-2024-10963

JSON object : View

Products Affected

No product.

CWE
CWE-287

Improper Authentication