CVE-2021-3784

Garuda Linux performs an insecure user creation and authentication that allows any user to impersonate the created account. By creating users from the 'Garuda settings manager', an insecure procedure is performed that keeps the created user without an assigned password during some seconds. This could allow a potential attacker to exploit this vulnerability in order to authenticate without knowing the password.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization	Third Party Advisory
https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:garudalinux:garuda_linux:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:22

Type	Values Removed	Values Added
References	~~() https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization - Third Party Advisory~~	() https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization - Third Party Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~7.0~~	v2 : unknown v3 : 5.3

11 Oct 2023, 19:17

Type	Values Removed	Values Added
First Time		Garudalinux Garudalinux garuda Linux
References	~~(MISC) https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization -~~	(MISC) https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization - Third Party Advisory
CPE		cpe:2.3:o:garudalinux:garuda_linux:-:::::::*
CWE		CWE-287
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.0

04 Oct 2023, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-04 16:15

Updated : 2024-11-21 06:22

NVD link : CVE-2021-3784

Mitre link : CVE-2021-3784

CVE.ORG link : CVE-2021-3784

JSON object : View

Products Affected

garudalinux

garuda_linux

CWE

CWE-287

Improper Authentication

{"id": "CVE-2021-3784", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cve-coordination@incibe.es", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.0, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.0}]}, "published": "2023-10-04T16:15:09.940", "references": [{"url": "https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization", "tags": ["Third Party Advisory"], "source": "cve-coordination@incibe.es"}, {"url": "https://www.incibe.es/en/incibe-cert/notices/aviso/garuda-linux-improper-authorization", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "cve-coordination@incibe.es", "description": [{"lang": "en", "value": "CWE-287"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "Garuda Linux performs an insecure user creation and authentication that allows any user to impersonate the created account. By creating users from the 'Garuda settings manager', an insecure procedure is performed that keeps the created user without an assigned password during some seconds. This could allow a potential attacker to exploit this vulnerability in order to authenticate without knowing the password."}, {"lang": "es", "value": "Garuda Linux realiza una creaci\u00f3n y autenticaci\u00f3n de usuarios insegura que permite a cualquier usuario hacerse pasar por la cuenta creada. Al crear usuarios desde el 'Administrador de configuraci\u00f3n de Garuda' se realiza un procedimiento inseguro que mantiene al usuario creado sin contrase\u00f1a asignada durante algunos segundos. Esto podr\u00eda permitir que un atacante potencial aproveche esta vulnerabilidad para autenticarse sin conocer la contrase\u00f1a."}], "lastModified": "2024-11-21T06:22:25.310", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:garudalinux:garuda_linux:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C80F457-F62E-42C7-B66D-7DC004391758"}], "operator": "OR"}]}], "sourceIdentifier": "cve-coordination@incibe.es"}