CVE-2024-1052

Boundary Vulnerable to Session Hijacking Through TLS Certificate Tampering

CVSS 8 HIGHEPSS 0.3%CWE-295

Vexday Risk Score

21Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 8EPSS 0.3%KEV nãoPoC —Patch —

Ciclo de vida

05 feb 2024Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

Boundary and Boundary Enterprise (“Boundary”) is vulnerable to session hijacking through TLS certificate tampering. An attacker with privileges to enumerate active or pending sessions, obtain a private key pertaining to a session, and obtain a valid trust on first use (TOFU) token may craft a TLS certificate to hijack an active session and gain access to the underlying service or application.

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Productos afectados

HashiCorp · Boundary HashiCorp · Boundary Enterprise

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://discuss.hashicorp.com/t/hcsec-2024-02-boundary-vulnerable-to-session-hijacking-through-tls-certificate-tampering/62458