cbcvebase.
CVE-2023-4320
published 2023-12-18

CVE-2023-4320: An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to…

PriorityP184high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
ITWVulnCheck KEVRansomware
Exploited in the wild
EPSS
0.53%
40.7th percentile
An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity.

Affected

1 ranges
VendorProductVersion rangeFixed in
redhatsatellite< 6.136.13

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor for personal access tokens created with expiration dates far in the future or effectively non-expiring (indefinite validity), which may indicate exploitation of the arithmetic overflow flaw in Satellite's token creation logic.
  • ·The arithmetic overflow is triggered specifically during the creation of a new personal access token in Red Hat Satellite; review and audit all existing personal access tokens for anomalous or indefinite expiry values.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
vulncheck7.6HIGH
vendor_redhat7.6HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.