CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-7012: Puppet-foreman: an authentication bypass vulnerability exists in foreman

Description

An authentication bypass vulnerability has been identified in Foreman when deployed with External Authentication, due to the puppet-foreman configuration. This issue arises from Apache's mod_proxy not properly unsetting headers because of restrictions on underscores in HTTP headers, allowing authentication through a malformed header. This flaw impacts all active Satellite deployments (6.13, 6.14 and 6.15) and could potentially enable unauthorized users to gain administrative access.

Classification

CVE ID: CVE-2024-7012

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.12% (probability of being exploited)

EPSS Percentile: 47.91% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://access.redhat.com/errata/RHSA-2024:6335
https://access.redhat.com/errata/RHSA-2024:6336
https://access.redhat.com/errata/RHSA-2024:6337
https://access.redhat.com/errata/RHSA-2024:8906
https://access.redhat.com/security/cve/CVE-2024-7012
https://bugzilla.redhat.com/show_bug.cgi?id=2299429

Timeline

2025-01-01 00:30:34 UTC
CVE

Puppet-foreman: an authentication bypass vulnerability exists in foreman