CVE-2021-4142

The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2021-4142	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2034346	Issue Tracking Vendor Advisory
https://github.com/candlepin/candlepin/pull/3197	Patch Third Party Advisory
https://github.com/candlepin/candlepin/pull/3198	Third Party Advisory
https://github.com/candlepin/candlepin/pull/3199	Patch Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:candlepinproject:candlepin::::::::
	cpe:2.3:a:candlepinproject:candlepin::::::::
	cpe:2.3:a:candlepinproject:candlepin::::::::

History

No history.

Information

Published : 2022-08-24 16:15

Updated : 2023-11-07 03:40

NVD link : CVE-2021-4142

Mitre link : CVE-2021-4142

CVE.ORG link : CVE-2021-4142

JSON object : View

Products Affected

candlepinproject

candlepin

CWE

CWE-639

Authorization Bypass Through User-Controlled Key

CWE-287

Improper Authentication

{"id": "CVE-2021-4142", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2022-08-24T16:15:09.547", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2021-4142", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2034346", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://github.com/candlepin/candlepin/pull/3197", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://github.com/candlepin/candlepin/pull/3198", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://github.com/candlepin/candlepin/pull/3199", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-639"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}, {"lang": "en", "value": "CWE-639"}]}], "descriptions": [{"lang": "en", "value": "The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin."}, {"lang": "es", "value": "El componente Candlepin de Red Hat Satellite estaba afectado por un fallo de autenticaci\u00f3n inapropiado. Algunos factores pod\u00edan permitir a un atacante usar el certificado SCA (Simple Content Access) para la autenticaci\u00f3n con Candlepin."}], "lastModified": "2023-11-07T03:40:15.473", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:candlepinproject:candlepin:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F8E66F2-C51A-413B-A621-33CA21EDA81F", "versionEndIncluding": "3.1.28-2", "versionStartIncluding": "3.1.0"}, {"criteria": "cpe:2.3:a:candlepinproject:candlepin:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "236D3F17-234D-41D9-A67D-0E919D60CE24", "versionEndIncluding": "3.2.21-1", "versionStartIncluding": "3.2.0"}, {"criteria": "cpe:2.3:a:candlepinproject:candlepin:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2822E169-A7B8-4EDA-B913-AF98CFC1BCCF", "versionEndIncluding": "4.1.8-1", "versionStartIncluding": "4.1.0"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}