CVE-2022-24950
CVSS V2 None
CVSS V3 High 7.5
Description
A race condition exists in Eternal Terminal prior to version 6.2.0 that allows an authenticated attacker to hijack other users' SSH authorization socket, enabling the attacker to login to other systems as the targeted users. The bug is in UserTerminalRouter::getInfoForId().
Overview
- CVE ID
- CVE-2022-24950
- Assigner
- cve-assign@fb.com
- Vulnerability Status
- Modified
- Published Version
- 2022-08-16T01:15:12
- Last Modified Date
- 2023-02-16T19:15:11
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:eternal_terminal_project:eternal_terminal:*:*:*:*:*:*:*:* | 1 | OR | 6.2.0 |
CVSS Version 3
- Version
- 3.1
- Vector String
- CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
- Attack Vector
- NETWORK
- Attack Compatibility
- HIGH
- Privileges Required
- LOW
- User Interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality Impact
- HIGH
- Availability Impact
- HIGH
- Base Score
- 7.5
- Base Severity
- HIGH
- Exploitability Score
- 1.6
- Impact Score
- 5.9
References
| Reference URL | Reference Tags |
|---|---|
| http://www.openwall.com/lists/oss-security/2023/02/16/1 | |
| https://github.com/MisterTea/EternalTerminal/commit/900348bb8bc96e1c7ba4888ac8480f643c43d3c3 | Patch Third Party Advisory |
| https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-85gw-pchc-4rf3 | Exploit Third Party Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2022-24950 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24950 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-08-16 14:00:41 | Added to TrackCVE | |||
| 2023-02-16 20:12:24 | 2023-02-16T19:15:11 | CVE Modified Date | updated | |
| 2023-02-16 20:12:24 | Analyzed | Modified | Vulnerability Status | updated |
| 2023-02-16 20:12:25 | References | updated |