The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a result, nodes that do not have the correct authentication key are not prevented from communicating with other nodes in the cluster.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 03:46
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
02 Dec 2022, 20:11
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fedoraproject
Fedoraproject fedora |
|
CPE | cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J4T4TTXAABVUCMPUL7XQ2PH5EYYOOQZY/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHDOFX7NQFH3UGZZA3SGW5SVMDDHIUVD/ - Mailing List, Third Party Advisory |
11 Oct 2022, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Oct 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Oct 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
04 Aug 2022, 14:47
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5194 - Third Party Advisory | |
References | (MISC) https://github.com/ClusterLabs/booth/commit/35bf0b7b048d715f671eb68974fb6b4af6528c67 - Patch, Third Party Advisory | |
First Time |
Clusterlabs
Debian debian Linux Debian Clusterlabs booth |
|
CPE | cpe:2.3:a:clusterlabs:booth:*:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
|
CWE | CWE-287 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
30 Jul 2022, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Jul 2022, 15:35
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-07-28 15:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-2553
Mitre link : CVE-2022-2553
CVE.ORG link : CVE-2022-2553
JSON object : View
Products Affected
debian
- debian_linux
clusterlabs
- booth
fedoraproject
- fedora
CWE
CWE-287
Improper Authentication