CVE-2024-0003
published 2024-09-23CVE-2024-0003: A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing…
PriorityP344high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
0.48%
37.5th percentile
A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| purestorage | flasharray | — | — |
| purestorage | flasharray | 5.3.17 – 5.3.21 | — |
| purestorage | flasharray | 6.0.7 – 6.0.9 | — |
| purestorage | flasharray | 6.1.8 – 6.1.25 | — |
| purestorage | flasharray | 6.2.0 – 6.2.17 | — |
| purestorage | flasharray | 6.3.0 – 6.3.14 | — |
| purestorage | flasharray | 6.4.0 – 6.4.10 | — |
| purestorage | purity_fa | — | — |
| purestorage | purity_fa | 5.3.17 – 5.3.21 | — |
| purestorage | purity_fa | 6.0.7 – 6.0.9 | — |
| purestorage | purity_fa | 6.1.8 – 6.1.25 | — |
| purestorage | purity_fa | 6.2.0 – 6.2.17 | — |
| purestorage | purity_fa | 6.3.0 – 6.3.14 | — |
| purestorage | purity_fa | 6.4.0 – 6.4.10 | — |
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
cisa9.8CRITICAL
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fhq8-gx6w-r3rj: A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing
ghsa_unreviewed·2024-09-23
CVE-2024-0003 [CRITICAL] CWE-269 GHSA-fhq8-gx6w-r3rj: A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing
A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access.
CISA
SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
cisa·2025-02-18·CVSS 9.8
CVE-2024-53704 [CRITICAL] CWE-287 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
Vulnerability: SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
Affected: SonicWall SonicOS
SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003 ; https://nvd.nist.gov/vuln/detail/CVE-2024-53704
Remediation Due Date: 2025-03-11
Red Hat
kernel: HID: wacom: fix when get product name maybe null pointer
vendor_redhat·2024-12-27·CVSS 5.5
CVE-2024-56629 [MEDIUM] CWE-476 kernel: HID: wacom: fix when get product name maybe null pointer
kernel: HID: wacom: fix when get product name maybe null pointer
In the Linux kernel, the following vulnerability has been resolved:
HID: wacom: fix when get product name maybe null pointer
Due to incorrect dev->product reporting by certain devices, null
pointer dereferences occur when dev->product is empty, leading to
potential system crashes.
This issue was found on EXCELSIOR DL37-D05 device with
Loongson-LS3A6000-7A2000-DL37 motherboard.
Kernel logs:
[ 56.470885] usb 4-3: new full-speed USB device number 4 using ohci-pci
[ 56.671638] usb 4-3: string descriptor 0 read error: -22
[ 56.671644] usb 4-3: New USB device found, idVendor=056a, idProduct=0374, bcdDevice= 1.07
[ 56.671647] usb 4-3: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 56.678839] hid-generic 0003:056A:0374.0
VMware
Addressing Arbitrary Authentication Relay and Session Hijack Vulnerabilities in Deprecated VMware Enhanced Authentication Plug-in (EAP) (CVE-2024-22245, CVE-2024-22250)
vendor_vmware·2024-02-20·CVSS 9.6
CVE-2024-22245 [CRITICAL] Addressing Arbitrary Authentication Relay and Session Hijack Vulnerabilities in Deprecated VMware Enhanced Authentication Plug-in (EAP) (CVE-2024-22245, CVE-2024-22250)
VMSA-2024-0003: Addressing Arbitrary Authentication Relay and Session Hijack Vulnerabilities in Deprecated VMware Enhanced Authentication Plug-in (EAP) (CVE-2024-22245, CVE-2024-22250)
The VMware Enhanced Authentication Plug-in (EAP) contains an Arbitrary Authentication Relay vulnerability. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.6.
CVEs: CVE-2024-22245, CVE-2024-22250
Affected products: VMware vCenter Server
Suricata
ET WEB_CLIENT Microsoft Windows Media component specific exploit
suricata·2012-01-28
CVE-2012-0003 ET WEB_CLIENT Microsoft Windows Media component specific exploit
ET WEB_CLIENT Microsoft Windows Media component specific exploit
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT Microsoft Windows Media component specific exploit"; flow:established,to_client; file.data; content:"bang()"; content:"cloned"; distance:0; content:"unescape(|22|%u0c0c%u0c0c%u0c0c%u0c0c%u0c0c%u0c0c|22|)"; fast_pattern; distance:0; reference:cve,2012-0003; classtype:attempted-user; sid:2014156; rev:7; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2012_01_28, cve CVE_2012_0003, deployment Perimeter, signature_severity Major, tag Web_Client_Attacks, updated_at 2024_04_08;)
Suricata
GPL RPC tooltalk TCP overflow attempt
suricata·2010-09-23
CVE-1999-0003 GPL RPC tooltalk TCP overflow attempt
GPL RPC tooltalk TCP overflow attempt
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL RPC tooltalk TCP overflow attempt"; flow:established,to_server; content:"|00 01 86 F3|"; depth:4; offset:16; content:"|00 00 00 07|"; within:4; distance:4; byte_jump:4,4,relative,align; byte_jump:4,4,relative,align; byte_test:4,>,128,0,relative; content:"|00 00 00 00|"; depth:4; offset:8; reference:bugtraq,122; reference:cve,1999-0003; classtype:misc-attack; sid:2101965; rev:10; metadata:created_at 2010_09_23, cve CVE_1999_0003, confidence Medium, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL RPC portmap ttdbserv request TCP
suricata·2010-09-23
CVE-1999-0003 GPL RPC portmap ttdbserv request TCP
GPL RPC portmap ttdbserv request TCP
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET 111 (msg:"GPL RPC portmap ttdbserv request TCP"; flow:established,to_server; content:"|00 01 86 A0|"; depth:4; offset:16; content:"|00 00 00 03|"; within:4; distance:4; byte_jump:4,4,relative,align; byte_jump:4,4,relative,align; content:"|00 01 86 F3|"; within:4; content:"|00 00 00 00|"; depth:4; offset:8; reference:arachnids,24; reference:bugtraq,122; reference:bugtraq,3382; reference:cve,1999-0003; reference:cve,1999-0687; reference:cve,1999-1075; reference:cve,2001-0717; reference:url,www.cert.org/advisories/CA-2001-05.html; classtype:rpc-portmap-decode; sid:2101274; rev:20; metadata:created_at 2010_09_23, cve CVE_1999_0003, signature_severity Informational, updated_at 2024_03_08;)
Nuclei
SSL VPN Session Hijacking
nuclei·CVSS 9.8
CVE-2024-53704 [CRITICAL] SSL VPN Session Hijacking
SSL VPN Session Hijacking
An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.
Template:
id: CVE-2024-53704
info:
name: SSL VPN Session Hijacking
author: johnk3r
severity: critical
description: |
An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.
impact: |
Unauthenticated attackers can hijack SSL VPN sessions by bypassing authentication mechanisms and gaining unauthorized access to the VPN.
remediation: |
Update SonicWall to a version that patches CVE-2024-53704 as specified in PSIRT advisory SNWLID-2025-0003.
reference:
- https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking
- https://psirt.global.sonicwal
No writeups or analysis indexed.
2024-09-23
Published