Red Hat has released an urgent security update to address a critical authentication vulnerability (CVE-2024-7923) in the Pulpcore content management system used on Red Hat Satellite. The vulnerability allows remote attackers to gain administrative access to the system.
CVE-2024-7923 has a CVSS score of 9.8 and affects Pulpcore when used with Gunicorn versions prior to 22.0. The problem lies in the handling of HTTP headers in Apache mod_proxy, which does not properly filter invalid headers, allowing an attacker to bypass authentication. By using specially crafted headers, attackers can gain administrative access to vulnerable systems. This is particularly dangerous for companies using Red Hat Satellite versions 6.13, 6.14 and 6.15, as a compromise can cause a complete system shutdown.
Pulpcore is a content management system widely used in the Red Hat Satellite infrastructure. Vulnerabilities in Pulpcore’s authentication can lead to serious risks, including data leakage and disruption of mission-critical systems. Red Hat responded quickly by releasing an update to minimize this threat.
Red Hat has released an emergency patch to address a critical authentication vulnerability (CVE-2024-7923) in Pulpcore; Red Hat Satellite users should update their systems immediately to protect against possible attacks.