CVE-2024-3049

Booth: specially crafted hash can lead to invalid hmac being accepted by booth server

Severity Score

5.9

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an invalid HMAC to be accepted by the Booth server.

Se encontró una falla en Booth, un administrador de tickets de clúster. Si se pasa un hash especialmente manipulado a gcry_md_get_algo_dlen(), es posible que el servidor Booth acepte un HMAC no válido.

*Credits: N/A

CVSS Scores

NISTv3.1 5.9

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-03-28 CVE Reserved
2024-05-04 First Exploit
2024-06-06 CVE Published
2024-09-13 CVE Updated
2024-09-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-345: Insufficient Verification of Data Authenticity

CAPEC

References (12)

URL	Tag	Source
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD

URL	Date	SRC
https://github.com/truonghuuphuc/CVE-2024-30491-Poc	2024-05-04

URL	Date	SRC

URL	Date	SRC
https://access.redhat.com/errata/RHSA-2024:3657	2024-07-09
https://access.redhat.com/errata/RHSA-2024:3658	2024-07-09
https://access.redhat.com/errata/RHSA-2024:3659	2024-07-09
https://access.redhat.com/errata/RHSA-2024:3660	2024-07-09
https://access.redhat.com/errata/RHSA-2024:3661	2024-07-09
https://access.redhat.com/errata/RHSA-2024:4400	2024-07-09
https://access.redhat.com/errata/RHSA-2024:4411	2024-07-09
https://access.redhat.com/security/cve/CVE-2024-3049	2024-07-09
https://bugzilla.redhat.com/show_bug.cgi?id=2272082	2024-07-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Clusterlabs Search vendor "Clusterlabs"		Booth Search vendor "Clusterlabs" for product "Booth"				< 1.1 Search vendor "Clusterlabs" for product "Booth" and version " < 1.1"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				7.0 Search vendor "Redhat" for product "Enterprise Linux" and version "7.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				8.0 Search vendor "Redhat" for product "Enterprise Linux" and version "8.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux"				9.0 Search vendor "Redhat" for product "Enterprise Linux" and version "9.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Eus Search vendor "Redhat" for product "Enterprise Linux Eus"				8.4 Search vendor "Redhat" for product "Enterprise Linux Eus" and version "8.4"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Eus Search vendor "Redhat" for product "Enterprise Linux Eus"				8.8 Search vendor "Redhat" for product "Enterprise Linux Eus" and version "8.8"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Eus Search vendor "Redhat" for product "Enterprise Linux Eus"				9.2 Search vendor "Redhat" for product "Enterprise Linux Eus" and version "9.2"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Arm 64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64"				8.0_aarch64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64" and version "8.0_aarch64"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Arm 64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64"				8.8_aarch64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64" and version "8.8_aarch64"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Arm 64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64"				9.2_aarch64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64" and version "9.2_aarch64"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Arm 64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64"				9.4_aarch64 Search vendor "Redhat" for product "Enterprise Linux For Arm 64" and version "9.4_aarch64"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Ibm Z Systems Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems"				8.0_s390x Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems" and version "8.0_s390x"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Ibm Z Systems Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems"				9.2_s390x Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems" and version "9.2_s390x"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Ibm Z Systems Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems"				9.4_s390x Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems" and version "9.4_s390x"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Ibm Z Systems Eus Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems Eus"				8.8_s390x Search vendor "Redhat" for product "Enterprise Linux For Ibm Z Systems Eus" and version "8.8_s390x"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Power Little Endian Eus Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus"				8.0_ppc64le Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus" and version "8.0_ppc64le"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Power Little Endian Eus Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus"				8.4_ppc64le Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus" and version "8.4_ppc64le"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Power Little Endian Eus Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus"				8.8_ppc64le Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus" and version "8.8_ppc64le"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Power Little Endian Eus Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus"				9.2_ppc64le Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus" and version "9.2_ppc64le"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux For Power Little Endian Eus Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus"				9.4_ppc64le Search vendor "Redhat" for product "Enterprise Linux For Power Little Endian Eus" and version "9.4_ppc64le"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Server Update Services For Sap Solutions Search vendor "Redhat" for product "Enterprise Linux Server Update Services For Sap Solutions"				8.4 Search vendor "Redhat" for product "Enterprise Linux Server Update Services For Sap Solutions" and version "8.4"		-		Affected