Vulnerabilities

CVE-2024-0822

by Fred · 25/01/2024

An authentication bypass vulnerability was found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command.

More information : https://access.redhat.com/errata/RHSA-2024:0934

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : NONE
User interaction : NONE
Confidentiality impact : NONE
Integrity impact : HIGH
Base score : 7.5
Base severity : HIGH
Exploitability score : 3.9
Impact score : 3.6

Similar

Tags: Cybersecurity Alert