CVE-2024-9312 — Incorrect User Management in LTD Authd

CWE-286 — Incorrect User Management CWE-335 — Incorrect Usage of Seeds in Pseudo-Random Number Generator5 documents4 sources

Severity

6.4MEDIUMNVD

CNA7.5

EPSS

0.1%

top 84.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Canonical LTD Authd Github.com Ubuntu Authd Canonical Authd

Timeline

PublishedOct 10

Latest updateOct 11

Description

Authd, through version 0.3.6, did not sufficiently randomize user IDs to prevent collisions. A local attacker who can register user names could spoof another user's ID and gain their privileges.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.5 | Impact: 5.9

Affected Packages3 packages

▶NVDcanonical/authd< 0.3.6

▶CVEListV5canonical_ltd/authd< 0.3.6

▶Gogithub.com/ubuntu_authd< 0.3.6+1

🔴Vulnerability Details

OSV

Authd allows attacker-controlled usernames to yield controllable UIDs in github.com/ubuntu/authd↗2024-10-11

▶

GHSA

Authd allows attacker-controlled usernames to yield controllable UIDs↗2024-10-10

▶

CVEList

CVE-2024-9312: Authd, through version 0↗2024-10-10

▶

OSV

Authd allows attacker-controlled usernames to yield controllable UIDs↗2024-10-10

▶