CVE-2023-40184

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.9.23

Description The issue is related to the improper handling of session establishment errors in xrdp, allowing bypassing of OS-level session restrictions. The auth start session function can return a non-zero value on errors, such as PAM errors, which may result in session restrictions being bypassed. This affects users who use restrictions by PAM, while administrators who do not use these restrictions are not affected.

Recommendations To resolve the issue, upgrade to release version 0.9.23 or later. As a temporary workaround, consider restricting access to the auth start session function until a patch is available. Additionally, review and adjust PAM settings, such as those in ./etc/security/limits.conf, to minimize the risk of exploitation. There are no known workarounds for this issue other than upgrading to the fixed version.

Exploit

Fix

Improper Handling of Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-755

Related Identifiers

ALT-PU-2023-5794

ALT-PU-2023-5795

ALT-PU-2023-5796

ALT-PU-2023-5797

ALT-PU-2023-5872

BDU:2023-07659

CVE-2023-40184

DLA-4166-1

GHSA-F489-557V-47JQ

MGASA-2023-0276

OPENSUSE-SU-2023_3830-1

OPENSUSE-SU-2024:13399-1

ROSA-SA-2024-2445

ROSA-SA-2024-2523

SUSE-SU-2023:3735-1

SUSE-SU-2023:3830-1

SUSE-SU-2023:4873-1

SUSE-SU-2023_3735-1

SUSE-SU-2023_3830-1

SUSE-SU-2023_4873-1

USN-6474-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Red Os

Suse

Ubuntu

Xrdp

CVE-2023-40184

Weakness Enumeration

Related Identifiers

Affected Products

References · 60