cvelistv5 - cve-2024-5203

cve-2024-5203

Vulnerability from cvelistv5

After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.

Show details on NVD website

JSON

To clipboard

{
   containers: {
      cna: {
         providerMetadata: {
            dateUpdated: "2024-09-13T10:15:30.617Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         rejectedReasons: [
            {
               lang: "en",
               value: "After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-5203",
      datePublished: "2024-06-12T08:51:59.518Z",
      dateRejected: "2024-09-13T10:15:30.617Z",
      dateReserved: "2024-05-22T15:10:01.533Z",
      dateUpdated: "2024-09-13T10:15:30.617Z",
      state: "REJECTED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      fkie_nvd: {
         descriptions: "[{\"lang\": \"en\", \"value\": \"Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.\"}]",
         id: "CVE-2024-5203",
         lastModified: "2024-09-13T11:15:10.197",
         published: "2024-06-12T09:15:20.647",
         sourceIdentifier: "secalert@redhat.com",
         vulnStatus: "Rejected",
      },
      nvd: "{\"cve\":{\"id\":\"CVE-2024-5203\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-06-12T09:15:20.647\",\"lastModified\":\"2024-09-13T11:15:10.197\",\"vulnStatus\":\"Rejected\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.\"}],\"metrics\":{},\"references\":[]}}",
      vulnrichment: {
         containers: "{\"cna\": {\"rejectedReasons\": [{\"lang\": \"en\", \"value\": \"After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.\"}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2024-09-13T10:15:30.617Z\"}}}",
         cveMetadata: "{\"cveId\": \"CVE-2024-5203\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"state\": \"REJECTED\", \"assignerShortName\": \"redhat\", \"dateReserved\": \"2024-05-22T15:10:01.533Z\", \"datePublished\": \"2024-06-12T08:51:59.518Z\", \"dateUpdated\": \"2024-09-13T10:15:30.617Z\", \"dateRejected\": \"2024-09-13T10:15:30.617Z\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}

ghsa-c9rq-mvr5-3w32

Vulnerability from github

Published

2024-06-12 09:30

Modified

2024-06-12 09:30

Severity ?

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N

Details

A Cross-site request forgery (CSRF) flaw was found in Keycloak and occurs due to the lack of a unique token sent during the authentication POST request, /login-actions/authenticate. This flaw allows an attacker to craft a malicious login page and trick a legitimate user of an application into authenticating with an attacker-controlled account instead of their own.

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2024-5203",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-352",
      ],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2024-06-12T09:15:20Z",
      severity: "LOW",
   },
   details: "A Cross-site request forgery (CSRF) flaw was found in Keycloak and occurs due to the lack of a unique token sent during the authentication POST request, /login-actions/authenticate. This flaw allows an attacker to craft a malicious login page and trick a legitimate user of an application into authenticating with an attacker-controlled account instead of their own.",
   id: "GHSA-c9rq-mvr5-3w32",
   modified: "2024-06-12T09:30:48Z",
   published: "2024-06-12T09:30:48Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2024-5203",
      },
      {
         type: "WEB",
         url: "https://access.redhat.com/security/cve/CVE-2024-5203",
      },
      {
         type: "WEB",
         url: "https://bugzilla.redhat.com/show_bug.cgi?id=2282572",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N",
         type: "CVSS_V3",
      },
   ],
}

fkie_cve-2024-5203

Vulnerability from fkie_nvd

Published

2024-06-12 09:15

Modified

2024-09-13 11:15

Severity ?

Summary

Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.

References

▼	URL	Tags

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to a session code parameter that matches a cookie on the Keycloak server. However the attacker does not have access to the cookie, and can therefore not craft a malicious request.",
      },
   ],
   id: "CVE-2024-5203",
   lastModified: "2024-09-13T11:15:10.197",
   metrics: {},
   published: "2024-06-12T09:15:20.647",
   references: [],
   sourceIdentifier: "secalert@redhat.com",
   vulnStatus: "Rejected",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2024-5203

Vulnerability from cvelistv5

ghsa-c9rq-mvr5-3w32

Vulnerability from github

fkie_cve-2024-5203

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature