CVE-2024-6409

EPSS 78.16%
Veröffentlicht 08.07.2024 18:15:09
Zuletzt bearbeitet 21.11.2024 09:49:35
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). As a consequence of a successful attack, in the worst case scenario, an attacker may be able to perform a remote code execution (RCE) as an unprivileged user running the sshd server.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 26

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Collection URLhttps://www.openssh.com/

≫

Paket OpenSSH

Default Statusunaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 9

Default Statusaffected

Version < *

Version 0:8.7p1-38.el9_4.4

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 9

Default Statusaffected

Version < *

Version 0:8.7p1-38.el9_4.4

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Default Statusaffected

Version < *

Version 0:8.7p1-12.el9_0.3

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 9.2 Extended Update Support

Default Statusaffected

Version < *

Version 0:8.7p1-30.el9_2.7

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat OpenShift Container Platform 4.13

Default Statusaffected

Version < *

Version 413.92.202408122222-0

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat OpenShift Container Platform 4.14

Default Statusaffected

Version < *

Version 414.92.202407300859-0

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat OpenShift Container Platform 4.15

Default Statusaffected

Version < *

Version 415.92.202407301159-0

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat OpenShift Container Platform 4.16

Default Statusaffected

Version < *

Version 416.94.202407171205-0

Status unaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 10

Default Statusunaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 6

Default Statusunaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 7

Default Statusunaffected

HerstellerRed Hat

≫

Produkt Red Hat Enterprise Linux 8

Default Statusunaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	78.16%	0.99

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
secalert@redhat.com	7	2.2	4.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE-364 Signal Handler Race Condition

The product uses a signal handler that introduces a race condition.

https://access.redhat.com/errata/RHSA-2024:4960

https://access.redhat.com/errata/RHSA-2024:4613

http://www.openwall.com/lists/oss-security/2024/07/08/2

http://www.openwall.com/lists/oss-security/2024/07/09/2

http://www.openwall.com/lists/oss-security/2024/07/09/5

http://www.openwall.com/lists/oss-security/2024/07/10/1

http://www.openwall.com/lists/oss-security/2024/07/10/2

https://access.redhat.com/errata/RHSA-2024:4457

https://access.redhat.com/errata/RHSA-2024:4716

https://access.redhat.com/errata/RHSA-2024:4910

https://access.redhat.com/errata/RHSA-2024:4955

https://access.redhat.com/errata/RHSA-2024:5444

https://access.redhat.com/security/cve/CVE-2024-6409

https://bugzilla.redhat.com/show_bug.cgi?id=2295085

https://almalinux.org/blog/2024-07-09-cve-2024-6409/

https://bugzilla.suse.com/show_bug.cgi?id=1227217

https://explore.alas.aws.amazon.com/CVE-2024-6409.html

https://github.com/openela-main/openssh/commit/c00da7741d42029e49047dd89e266d91dcfbffa0

https://security-tracker.debian.org/tracker/CVE-2024-6409

https://security.netapp.com/advisory/ntap-20240712-0003/

https://sig-security.rocky.page/issues/CVE-2024-6409/

https://ubuntu.com/security/CVE-2024-6409

https://www.suse.com/security/cve/CVE-2024-6409.html

https://nvd.nist.gov/vuln/detail/CVE-2024-6409

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6409

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6409

EUVD