CVE-2023-4641

CWE-303 CWE-287 — Improper Authentication9 documents9 sources

Severity

5.5MEDIUM

EPSS

0.0%

top 96.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Shadow-maint Shadow-utils Redhat Codeready Linux Builder Redhat Codeready Linux Builder FOR Arm64 +6 more

Timeline

PublishedDec 27

Latest updateApr 15

Description

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on the second attempt, shadow-utils fails in cleaning the buffer used to store the first entry. This may allow an attacker with enough access to retrieve the password from the memory.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages3 packages

▶NVDshadow-maint/shadow-utils< 4.14.0

▶Debianshadow< 1:4.8.1-1+deb11u1+3

▶NVDredhat/codeready_linux_builder8.0, 9.0+1

Also affects: Enterprise Linux 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-6ggv-mmg2-jf4r: A flaw was found in shadow-utils↗2023-12-27

▶

CVEList

Shadow-utils: possible password leak during passwd(1) change↗2023-12-27

▶

OSV

CVE-2023-4641: A flaw was found in shadow-utils↗2023-12-27

▶

📋Vendor Advisories

Oracle

Oracle Oracle Communications Risk Matrix: Install/Upgrade (shadow-utils) — CVE-2023-4641↗2024-04-15

▶

Ubuntu

shadow vulnerability↗2024-02-15

▶

Microsoft

Shadow-utils: possible password leak during passwd(1) change↗2023-12-12

▶

Red Hat

shadow-utils: possible password leak during passwd(1) change↗2023-06-17

▶

Debian

CVE-2023-4641: shadow - A flaw was found in shadow-utils. When asking for a new password, shadow-utils a...↗2023

▶