SB2024030437 - Multiple vulnerabilities in Red Hat Ansible Automation Platform 2.4 for RHEL 9

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2024030437

SB2024030437 - Multiple vulnerabilities in Red Hat Ansible Automation Platform 2.4 for RHEL 9

Published: March 4, 2024

Security Bulletin ID SB2024030437
Severity
Medium
Patch available
YES
Number of vulnerabilities 9
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 89% Low 11%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 9 secuirty vulnerabilities.


1) Missing Authorization (CVE-ID: CVE-2024-1657)

The vulnerability allows a remote attacker to gain unauthorized access to the application.

The vulnerability exists due to usage of an insecure websocket during installation. A remote attacker with access to any of the machines in the CIDR block can pull all rulebook data from that websocket.


2) Resource exhaustion (CVE-ID: CVE-2024-24680)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources in intcomma template filter. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.


3) Cross-site scripting (CVE-ID: CVE-2024-22195)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data within the xmlattr filter. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.


4) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2023-49082)

The vulnerability allows a remote attacker to perform HTTP request smuggling attacks.

The vulnerability exists due to improper validation of HTTP requests when processing HTTP request method. A remote attacker can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.


5) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2023-49081)

The vulnerability allows a remote attacker to perform HTTP request smuggling attacks.

The vulnerability exists due to improper validation of HTTP requests when processing HTTP version. A remote attacker can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.


6) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2023-47627)

The vulnerability allows a remote attacker to perform HTTP request smuggling attacks.

The vulnerability exists due to improper validation of HTTP requests when AIOHTTP_NO_EXTENSIONS is enabled. A remote attacker can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.


7) Observable discrepancy (CVE-ID: CVE-2023-52323)

The vulnerability allows a remote attacker to perform a side-channel attack.

The vulnerability exists due to observable discrepancy, which allows the side-channel leakage for OAEP decryption. A remote attacker can perform a Manger attack and gain access to sensitive information.


8) Resource exhaustion (CVE-ID: CVE-2023-44271)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources in ImageFont. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.


9) Inefficient regular expression complexity (CVE-ID: CVE-2022-40896)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing untrusted input with a regular expressions in pygments/lexers/smithy.py. A remote attacker can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.


Remediation

Install update from vendor's website.

References