CVE-2024-24766 - Vulnerability Details - OpenCVE

CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability in the login page. An attacker can enumerate the CasaOS username using the application response. If the username is incorrect application gives the error `**User does not exist**`. If the password is incorrect application gives the error `**Invalid password**`. Version 0.4.7 fixes this issue.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7
https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7
https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm
https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-hcw2-2r9c-gc6p

History

Fri, 22 Nov 2024 12:00:00 +0000

Type	Values Removed	Values Added
References		https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-hcw2-2r9c-gc6p

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-03-06T18:10:25.869Z

Updated: 2024-08-01T23:28:11.932Z

Reserved: 2024-01-29T20:51:26.011Z

Link: CVE-2024-24766

Vulnrichment

Updated: 2024-08-01T23:28:11.932Z

NVD

Status : Awaiting Analysis

Published: 2024-03-06T19:15:07.290

Modified: 2024-11-21T08:59:39.573

Link: CVE-2024-24766

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-24766", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-01-29T20:51:26.011Z", "datePublished": "2024-03-06T18:10:25.869Z", "dateUpdated": "2024-08-01T23:28:11.932Z"}, "containers": {"cna": {"title": "CasaOS Username Enumeration", "problemTypes": [{"descriptions": [{"cweId": "CWE-204", "lang": "en", "description": "CWE-204: Observable Response Discrepancy", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm"}, {"name": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "tags": ["x_refsource_MISC"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7"}, {"name": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "tags": ["x_refsource_MISC"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7"}], "affected": [{"vendor": "IceWhaleTech", "product": "CasaOS-UserService", "versions": [{"version": ">= 0.4.4.3, < 0.4.7", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-06T18:10:25.869Z"}, "descriptions": [{"lang": "en", "value": "CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability in the login page. An attacker can enumerate the CasaOS username using the application response. If the username is incorrect application gives the error `**User does not exist**`. If the password is incorrect application gives the error `**Invalid password**`. Version 0.4.7 fixes this issue."}], "source": {"advisory": "GHSA-c967-2652-gfjm", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-hcw2-2r9c-gc6p"}], "affected": [{"vendor": "icewhaletech", "product": "casaos-userservice", "cpes": ["cpe:2.3:a:icewhaletech:casaos-userservice:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0.4.4.3", "status": "affected", "lessThan": "0.4.7", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-19T16:24:29.577446Z", "id": "CVE-2024-24766", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-19T21:13:12.166Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:28:11.932Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm"}, {"name": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7"}, {"name": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:28:11.932Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-24766", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-07-19T16:24:29.577446Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:icewhaletech:casaos-userservice:*:*:*:*:*:*:*:*"], "vendor": "icewhaletech", "product": "casaos-userservice", "versions": [{"status": "affected", "version": "0.4.4.3", "lessThan": "0.4.7", "versionType": "custom"}], "defaultStatus": "unknown"}], "references": [{"url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-hcw2-2r9c-gc6p"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-19T16:25:05.063Z"}}], "cna": {"title": "CasaOS Username Enumeration", "source": {"advisory": "GHSA-c967-2652-gfjm", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "IceWhaleTech", "product": "CasaOS-UserService", "versions": [{"status": "affected", "version": ">= 0.4.4.3, < 0.4.7"}]}], "references": [{"url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "name": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability in the login page. An attacker can enumerate the CasaOS username using the application response. If the username is incorrect application gives the error `**User does not exist**`. If the password is incorrect application gives the error `**Invalid password**`. Version 0.4.7 fixes this issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-204", "description": "CWE-204: Observable Response Discrepancy"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-06T18:10:25.869Z"}}}, "cveMetadata": {"cveId": "CVE-2024-24766", "state": "PUBLISHED", "dateUpdated": "2024-08-01T23:28:11.932Z", "dateReserved": "2024-01-29T20:51:26.011Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-03-06T18:10:25.869Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability in the login page. An attacker can enumerate the CasaOS username using the application response. If the username is incorrect application gives the error `**User does not exist**`. If the password is incorrect application gives the error `**Invalid password**`. Version 0.4.7 fixes this issue."}, {"lang": "es", "value": "CasaOS-UserService proporciona funcionalidades de gesti\u00f3n de usuarios a CasaOS. A partir de la versi\u00f3n 0.4.4.3 y antes de la versi\u00f3n 0.4.7, la p\u00e1gina de inicio de sesi\u00f3n de Casa OS revel\u00f3 la vulnerabilidad de enumeraci\u00f3n de nombres de usuario en la p\u00e1gina de inicio de sesi\u00f3n. Un atacante puede enumerar el nombre de usuario de CasaOS utilizando la respuesta de la aplicaci\u00f3n. Si el nombre de usuario es incorrecto, la aplicaci\u00f3n muestra el error `**El usuario no existe**`. Si la contrase\u00f1a es incorrecta, la aplicaci\u00f3n muestra el error `**Contrase\u00f1a no v\u00e1lida**`. La versi\u00f3n 0.4.7 soluciona este problema."}], "id": "CVE-2024-24766", "lastModified": "2024-11-21T08:59:39.573", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-03-06T19:15:07.290", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7"}, {"source": "security-advisories@github.com", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7"}, {"source": "security-advisories@github.com", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/commit/c75063d7ca5800948e9c09c0a6efe9809b5d39f7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/releases/tag/v0.4.7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c967-2652-gfjm"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-hcw2-2r9c-gc6p"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-204"}], "source": "security-advisories@github.com", "type": "Secondary"}]}