CVE-2024-3183: Red Hat FreeIPA 安全漏洞

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2024-3183 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

Freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is different for each new session, which protects it from brute force attacks. However, the ticket it contains is encrypted using the target principal key directly. For user principals, this key is a hash of a public per-principal randomly-generated salt and the user’s password. If a principal is compromised it means the attacker would be able to retrieve tickets encrypted to any principal, all of them being encrypted by their own key directly. By taking these tickets and salts offline, the attacker could run brute force attacks to find character strings able to decrypt tickets when combined to a principal salt (i.e. find the principal’s password).

来源: 美国国家漏洞数据库 NVD

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

使用具有不充分计算复杂性的口令哈希

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

Red Hat FreeIPA 安全漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

Red Hat FreeIPA是美国红帽（Red Hat）公司的一套集成的安全信息管理解决方案。该产品主要为Linux和Unix计算机网络提供身份管理、策略管理和审计管理（IPA）等功能。 Red Hat FreeIPA存在安全漏洞，该漏洞源于攻击者可通过暴力攻击来查找密码。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商	产品	影响版本	CPE
Red Hat	Red Hat Enterprise Linux 7	0:4.6.8-5.el7_9.17 ~ *	`cpe:/o:redhat:enterprise_linux:7::client`
Red Hat	Red Hat Enterprise Linux 8	8100020240528133707.823393f5 ~ *	`cpe:/a:redhat:enterprise_linux:8::appstream`
Red Hat	Red Hat Enterprise Linux 8.2 Advanced Update Support	8020020240530191103.792f4060 ~ *	`cpe:/a:redhat:rhel_aus:8.2::appstream`
Red Hat	Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	8040020240528055121.5b01ab7e ~ *	`cpe:/a:redhat:rhel_aus:8.4::appstream`
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service	8040020240528055121.5b01ab7e ~ *	`cpe:/a:redhat:rhel_aus:8.4::appstream`
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	8040020240528055121.5b01ab7e ~ *	`cpe:/a:redhat:rhel_aus:8.4::appstream`
Red Hat	Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	8060020240530061719.ada582f1 ~ *	`cpe:/a:redhat:rhel_aus:8.6::appstream`
Red Hat	Red Hat Enterprise Linux 8.6 Telecommunications Update Service	8060020240530061719.ada582f1 ~ *	`cpe:/a:redhat:rhel_aus:8.6::appstream`
Red Hat	Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	8060020240530061719.ada582f1 ~ *	`cpe:/a:redhat:rhel_aus:8.6::appstream`
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	8080020240530051744.b0a6ceea ~ *	`cpe:/a:redhat:rhel_eus:8.8::appstream`
Red Hat	Red Hat Enterprise Linux 9	0:4.11.0-15.el9_4 ~ *	`cpe:/a:redhat:enterprise_linux:9::crb`
Red Hat	Red Hat Enterprise Linux 9.0 Extended Update Support	0:4.9.8-11.el9_0.3 ~ *	`cpe:/a:redhat:rhel_eus:9.0::appstream`
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	0:4.10.1-12.el9_2.2 ~ *	`cpe:/a:redhat:rhel_eus:9.2::appstream`
Red Hat	Red Hat Enterprise Linux 10	-	`cpe:/o:redhat:enterprise_linux:10`

二、漏洞 CVE-2024-3183 的公开POC

#	POC 描述	源链接	神龙链接
1	POC for CVE-2024-3183 (FreeIPA Rosting)	https://github.com/Cyxow/CVE-2024-3183-POC	POC详情
2	POC for CVE-2024-3183 (FreeIPA Rosting)	https://github.com/Im10n/CVE-2024-3183-POC	POC详情

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2024-3183 的情报信息

Please 登录 to view more intelligence information

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WT3JL7JQDIAFKKEFARWYES7GZNWGQNCI/
https://www.freeipa.org/release-notes/4-12-1.html
https://access.redhat.com/security/cve/CVE-2024-3183vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2270685issue-trackingx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3775vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3759vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3758vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3754vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3757vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3755vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3760vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3761vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3756vendor-advisoryx_refsource_REDHAT
https://nvd.nist.gov/vuln/detail/CVE-2024-3183

IV. Related Vulnerabilities

Same weakness: CWE-916

V. Comments for CVE-2024-3183

暂无评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2024-3183 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2024-3183 的公开POC

三、漏洞 CVE-2024-3183 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2024-3183

发表评论

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

一、 漏洞 CVE-2024-3183 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2024-3183 的公开POC

三、漏洞 CVE-2024-3183 的情报信息

IV. Related Vulnerabilities

V. Comments for CVE-2024-3183

发表评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2024-3183 基础信息