CVE-2023-4320

CVSS V2 None CVSS V3 None
Description
An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity.
Overview
  • CVE ID
  • CVE-2023-4320
  • Assigner
  • redhat
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-18T13:43:07.747Z
  • Last Modified Date
  • 2024-05-01T20:21:08.549Z
References
Reference URL Reference Tags
https://access.redhat.com/errata/RHSA-2024:2010 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4320 vdb-entry x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2231814 issue-tracking x_refsource_REDHAT
History
Created Old Value New Value Data Type Notes
2024-06-24 19:30:46 Added to TrackCVE