Lucene search

GitHub_MVULNRICHMENT:CVE-2024-47000

HistorySep 19, 2024 - 11:10 p.m.

CVE-2024-47000 Service Users Deactivation not Working in Zitadel

2024-09-1923:10:33

CWE-269

GitHub_M

github.com

zitadel

service accounts

deactivation

unauthorized access

upgrade

credentials

authentication keys

password rotation

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

Zitadel is an open source identity management platform. ZITADEL’s user account deactivation mechanism did not work correctly with service accounts. Deactivated service accounts retained the ability to request tokens, which could lead to unauthorized access to applications and resources. Versions 2.62.1, 2.61.1, 2.60.2, 2.59.3, 2.58.5, 2.57.5, 2.56.6, 2.55.8, and 2.54.10 have been released which address this issue. Users are advised t upgrade. Users unable to upgrade may instead of deactivating the service account, consider creating new credentials and replacing the old ones wherever they are used. This effectively prevents the deactivated service account from being utilized. Be sure to revoke all existing authentication keys associated with the service account and to rotate the service account’s password.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:zitadel:zitadel:*:*:*:*:*:*:*:*"
    ],
    "vendor": "zitadel",
    "product": "zitadel",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "2.54.10",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.55.0",
        "lessThan": "2.55.8",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.56.0",
        "lessThan": "2.56.6",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.57.0",
        "lessThan": "2.57.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.58.0",
        "lessThan": "2.58.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.59.0",
        "lessThan": "2.59.3",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.60.0",
        "lessThan": "2.60.2",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.61.0",
        "lessThan": "2.61.1",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.62.0",
        "lessThan": "2.62.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/zitadel/zitadel/security/advisories/GHSA-qr2h-7pwm-h393

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

7.2

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

Related for VULNRICHMENT:CVE-2024-47000