{"vulnerability": "CVE-2024-9313", "sightings": [{"uuid": "ca2efc34-db01-4dba-9a3c-44c28d74eb5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "seen", "source": "https://t.me/CyberBulletin/1027", "content": "\u26a1\ufe0fAuthd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems.\n\n#CyberBulletin", "creation_timestamp": "2024-10-04T14:13:01.000000Z"}, {"uuid": "37521fe0-ae8c-468c-9776-8976dfa976de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "seen", "source": "https://t.me/cvedetector/6893", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-9313 - Apache Authd Broker Manager Impersonation Comparator\", \n  \"Content\": \"CVE ID : CVE-2024-9313 \nPublished : Oct. 3, 2024, 11:15 a.m. | 42\u00a0minutes ago \nDescription : Authd PAM module before version 0.3.5 can allow broker-managed users to impersonate any other user managed by the same broker and perform any PAM operation with it, including authenticating as them. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-03T14:06:26.000000Z"}, {"uuid": "9c2eb0e1-68dd-44b1-9f67-0d6da06d9a38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "seen", "source": "https://t.me/InfoSecInsider/441", "content": "\u26a1\ufe0fAuthd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems.\n\n#CyberBulletin", "creation_timestamp": "2024-10-04T14:16:24.000000Z"}, {"uuid": "de8870af-a7eb-4354-a47b-a17af2933b6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/15217", "content": "\u200aAuthd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems\n\nhttps://securityonline.info/authd-vulnerability-cve-2024-9313-allows-user-impersonation-on-ubuntu-systems/", "creation_timestamp": "2024-10-05T17:00:36.000000Z"}, {"uuid": "843b190d-15ff-4986-ad12-9fe077760e4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "seen", "source": "https://t.me/InfoSecInsider/23999", "content": "\u26a1\ufe0fAuthd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems.\n\n#CyberBulletin", "creation_timestamp": "2024-10-04T14:16:18.000000Z"}, {"uuid": "a83417c5-dd21-4fdd-9176-730d8e5266b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "published-proof-of-concept", "source": "https://t.me/cybersecs/3016", "content": "\u042f \u043e\u0431\u044b\u0447\u043d\u043e \u043d\u0435 \u0440\u0443\u0433\u0430\u044e\u0441\u044c, \u043f\u043e \u043a\u0440\u0430\u0439\u043d\u0435\u0439 \u043c\u0435\u0440\u0435 \u0442\u0443\u0442, \u043d\u043e \u044d\u0442\u043e \u043f\u0440\u043e\u0441\u0442\u043e \"\u0435\u0431\u0430\u043d\u044b\u0439 \u0441\u0442\u044b\u0434\"\n\nCVE-2024-9313 \nSeverity: High (8.8) \nOs: Ubuntu\nTarget : PAM module\nAffected versions: < 0.3.5\n\n\u0412 \u0434\u0432\u0443\u0445 \u0441\u043b\u043e\u0432\u0430\u0445, \u043c\u043e\u0436\u043d\u043e \u0432 su|sudo|sshd \u0432\u0432\u0435\u0441\u0442\u0438 \u0438\u043c\u044f \u043e\u0434\u043d\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0430 \u043f\u0430\u0440\u043e\u043b\u044c \u0432\u0432\u0435\u0441\u0442\u0438 \u043e\u0442 \u0434\u0440\u0443\u0433\u043e\u0433\u043e \u0438 \u044d\u0442\u043e \u0441\u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442....\n\u042d\u0442\u043e, \u0441\u0443\u0434\u044f \u043f\u043e \u0432\u0441\u0435\u043c\u0443, \u043d\u0435 \u043a\u0430\u0441\u0430\u0435\u0442\u0441\u044f \u0432\u0430\u0448\u0435\u0439 \u0434\u043e\u043c\u0430\u0448\u043d\u0435\u0439 \u0443\u0431\u0443\u043d\u0442\u044b, \u0440\u0435\u0447\u044c \u0438\u0434\u0435\u0442 \u043f\u0440\u043e\n\nAuthd is an authentication daemon for cloud-based identity providers. It helps ensure the secure management of identity and access for Ubuntu machines anywhere in the world, on desktop and the server. Authd's modular design makes it a versatile authentication service that can integrate with multiple identity providers. MS Entra ID is currently supported and several other identity providers are under active development.\n\n, \u043d\u043e \u0432\u0441\u0435 \u0440\u0430\u0432\u043d\u043e \u044d\u0442\u043e \ud83e\udd26\u200d\u2642\ufe0f\ud83e\udd26\u200d\u2642\ufe0f\ud83e\udd26\u200d\u2642\ufe0f.\n\nhttps://github.com/ubuntu/authd/security/advisories/GHSA-x5q3-c8rm-w787", "creation_timestamp": "2024-10-04T19:49:36.000000Z"}, {"uuid": "cdb6e30f-b511-41f2-9a66-0742d9c0b597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-9313", "type": "seen", "source": "https://t.me/CyberBulletin/25922", "content": "\u26a1\ufe0fAuthd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems.\n\n#CyberBulletin", "creation_timestamp": "2024-10-04T14:13:01.000000Z"}]}