Bug 1744801 (CVE-2019-14841)
| Summary: | CVE-2019-14841 RHDM: admin console auth bypass | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Chess Hazlett <chazlett> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | akoufoud, alazarot, almorale, anstephe, dgutierr, etirelli, ibek, jrokos, jstastny, krathod, kverlaen, mnovotny, pjindal, porcelli, rfreire, rrajasek, rsynek, sdaley, security-response-team, tzimanyi |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: |
A flaw was found in the RHDM, where an authenticated attacker can change their assigned role in the response header. This flaw allows an attacker to gain admin privileges in the Business Central Console.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2021-10-25 09:52:53 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1744775, 1983122 | ||
|
Description
Chess Hazlett
2019-08-22 21:47:49 UTC
Could we have more details on this problem? Also we need a jira if it is real CVE. (In reply to Marek Novotny from comment #1) > Could we have more details on this problem? Also we need a jira if it is > real CVE. Hi Marek, Please reach Alexandre Porcelli, he has the reproducer. I am able to successfully replicate this. User can intercept the response and edit the role (from developer to admin in my test case) to admin and he will get the admin privileges in the console. |