6.5

CVE-2023-5455

Ipa: invalid csrf protection

A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of confidentiality and system integrity. During community penetration testing it was found that for certain HTTP end-points FreeIPA does not ensure CSRF protection. Due to implementation details one cannot use this flaw for reflection of a cookie representing already logged-in user. An attacker would always have to go through a new authentication attempt.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FreeipaFreeipa Version < 4.6.10
FreeipaFreeipa Version >= 4.7.0 < 4.9.14
FreeipaFreeipa Version >= 4.10.0 < 4.10.3
FreeipaFreeipa Version4.11.0 Update-
FreeipaFreeipa Version4.11.0 Updatebeta1
FedoraprojectFedora Version38
FedoraprojectFedora Version39
FedoraprojectFedora Version40
RedhatEnterprise Linux Version7.0
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Version8.0 HwPlatformarm64
RedhatEnterprise Linux Version8.4
RedhatEnterprise Linux Version9.0
RedhatEnterprise Linux Eus Version8.6
RedhatEnterprise Linux Eus Version8.6 HwPlatformarm64
RedhatEnterprise Linux Eus Version8.8
RedhatEnterprise Linux Eus Version9.0
RedhatEnterprise Linux Eus Version9.2
RedhatEnterprise Linux Server Version9.0 HwPlatformarm64
RedhatEnterprise Linux Server Version9.2 HwPlatformarm64
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.57% 0.426
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
secalert@redhat.com 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

https://access.redhat.com/errata/RHSA-2024:0137
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0138
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0139
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0140
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0141
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0142
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0143
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0144
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0145
Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:0252
Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-5455
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2242828
Third Party Advisory
Issue Tracking
https://www.freeipa.org/release-notes/4-10-3.html
Release Notes
https://www.freeipa.org/release-notes/4-11-1.html
Release Notes
https://www.freeipa.org/release-notes/4-6-10.html
Release Notes
https://www.freeipa.org/release-notes/4-9-14.html
Release Notes
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U76DAZZVY7V4XQBOOV5ETPTHW3A6MW5O/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UFNUQH7IOHTKCTKQWFHONWGUBOUANL6I/