Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2024-4871

Key Exchange without Entity Authentication

Published: May 14, 2024 | Modified: Aug 12, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
6.8 MODERATE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2024-4871
CWEhttps://cwe.mitre.org/data/definitions/322.html

A vulnerability was found in Satellite. When running a remote execution job on a host, the hosts SSH key is not being checked. When the key changes, the Satellite still connects it because it uses -o StrictHostKeyChecking=no. This flaw can lead to a man-in-the-middle attack (MITM), denial of service, leaking of secrets the remote execution job contains, or other issues that may arise from the attackers ability to forge an SSH key. This issue does not directly allow unauthorized remote execution on the Satellite, although it can leak secrets that may lead to it.

Weakness

The product performs a key exchange with an actor without verifying the identity of that actor.

Affected Software

Name Vendor Start Version End Version
Red Hat Satellite 6.15 for RHEL 8 RedHat candlepin-0:4.3.14-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat foreman-0:3.9.1.8-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat foreman-installer-1:3.9.3.2-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat python-pulp-container-0:2.16.9-1.el8pc *
Red Hat Satellite 6.15 for RHEL 8 RedHat python-pulpcore-0:3.39.15-1.el8pc *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-dynflow-0:1.8.3-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-foreman_ansible-0:13.0.6-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-foreman_remote_execution-0:12.0.7-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-katello-0:4.11.0.15-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-smart_proxy_container_gateway-0:3.0.0-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-smart_proxy_remote_execution_ssh-0:0.10.6-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat satellite-0:6.15.2-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat candlepin-0:4.3.14-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat foreman-0:3.9.1.8-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat foreman-installer-1:3.9.3.2-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat python-pulp-container-0:2.16.9-1.el8pc *
Red Hat Satellite 6.15 for RHEL 8 RedHat python-pulpcore-0:3.39.15-1.el8pc *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-dynflow-0:1.8.3-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-foreman_ansible-0:13.0.6-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-foreman_remote_execution-0:12.0.7-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-katello-0:4.11.0.15-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-smart_proxy_container_gateway-0:3.0.0-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat rubygem-smart_proxy_remote_execution_ssh-0:0.10.6-1.el8sat *
Red Hat Satellite 6.15 for RHEL 8 RedHat satellite-0:6.15.2-1.el8sat *

Potential Mitigations

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use