CVE-2024-10394
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix client
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A local user can bypass the OpenAFS PAG (Process Authentication Group)
throttling mechanism in Unix clients, allowing the user to create a PAG using
an existing id number, effectively joining the PAG and letting the user steal
the credentials in that PAG.
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix clients, allowing the user to create a PAG using an existing id number, effectively joining the PAG and letting the user steal the credentials in that PAG.
Several vulnerabilities were discovered in OpenAFS, an implementation of the AFS distributed filesystem, which may result in theft of credentials in Unix client PAGs (CVE-2024-10394), fileserver crashes and information leak on StoreACL/FetchACL (CVE-2024-10396) or buffer overflows in XDR responses resulting in denial of service and potentially code execution (CVE-2024-10397).
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-10-25 CVE Reserved
- 2024-11-14 CVE Published
- 2024-11-21 CVE Updated
- 2025-05-21 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (1)
URL | Tag | Source |
---|---|---|
https://openafs.org/pages/security/OPENAFS-SA-2024-001.txt |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
OpenAFS Search vendor "OpenAFS" | OpenAFS Search vendor "OpenAFS" for product "OpenAFS" | >= 1.0.0 <= 1.6.24 Search vendor "OpenAFS" for product "OpenAFS" and version " >= 1.0.0 <= 1.6.24" | en |
Affected
| ||||||
OpenAFS Search vendor "OpenAFS" | OpenAFS Search vendor "OpenAFS" for product "OpenAFS" | >= 1.8.0.0 <= 1.8.12.2 Search vendor "OpenAFS" for product "OpenAFS" and version " >= 1.8.0.0 <= 1.8.12.2" | en |
Affected
| ||||||
OpenAFS Search vendor "OpenAFS" | OpenAFS Search vendor "OpenAFS" for product "OpenAFS" | >= 1.9.0 <= 1.9.1 Search vendor "OpenAFS" for product "OpenAFS" and version " >= 1.9.0 <= 1.9.1" | en |
Affected
|