Vulnerabilities > CVE-2023-4320 - Insufficient Session Expiration vulnerability in Redhat Satellite

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
redhat
CWE-613

Summary

An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity.

Vulnerable Configurations

Part Description Count
Application
Redhat
146

Common Weakness Enumeration (CWE)