Security Advisory

CVE-2024-9312

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-10 13:42:31

Last updated 2024-10-10 14:55:40

Assigner canonical

State PUBLISHED

Description

Authd, through version 0.3.6, did not sufficiently randomize user IDs to prevent collisions. A local attacker who can register user names could spoof another users ID and gain their privileges.

← Browse all CVEs View on cve.org ↗