CVE-2024-23301

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Relax-and-Recover (aka ReaR) versions 2.7 and earlier

Description The issue is related to information disclosure. It allows local attackers to gain access to system secrets that are otherwise only readable by root. This occurs when using GRUB RESCUE=y, which creates a world-readable initrd.

Recommendations For Relax-and-Recover (aka ReaR) versions 2.7 and earlier, consider disabling the use of GRUB RESCUE=y until a patch is available to prevent the creation of a world-readable initrd. As a temporary workaround, restrict access to sensitive system secrets to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Incorrect Default Permissions

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276CWE-200

Related Identifiers

ALSA-2024:1147

ALSA-2024:1719

AZL-43810

AZL-44403

BDU:2024-00450

CESA-2024_1719

CVE-2024-23301

DLA-3733-1

DLA-4400-1

MGASA-2024-0131

OESA-2024-1077

OPENSUSE-SU-2024:13612-1

OPENSUSE-SU-2024_0247-1

RHSA-2024:1147

RHSA-2024:1719

RHSA-2024_1147

RHSA-2024_1719

RLSA-2024:1719

SUSE-SU-2024:0135-1

SUSE-SU-2024:0148-1

SUSE-SU-2024:0190-1

SUSE-SU-2024:0239-1

SUSE-SU-2024:0247-1

SUSE-SU-2024:0253-1

SUSE-SU-2024:0291-1

SUSE-SU-2024:0292-1

SUSE-SU-2024:0657-1

SUSE-SU-2024_0135-1

SUSE-SU-2024_0148-1

SUSE-SU-2024_0190-1

SUSE-SU-2024_0239-1

SUSE-SU-2024_0247-1

SUSE-SU-2024_0253-1

SUSE-SU-2024_0291-1

SUSE-SU-2024_0292-1

SUSE-SU-2024_0657-1

Affected Products

Almalinux

Centos

Debian

Red Hat

Red Os

Relax-And-Recover

Rocky Linux

Suse

CVE-2024-23301

Weakness Enumeration

Related Identifiers

Affected Products

References · 69