Vulnerability in Red Hat Enterprise Linux 10
CVE-2024-6409
A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is called asynchronously. However, this s…
EPSS: 0.764 (99.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.0 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H.
Affected products
- Red Hat Enterprise Linux 10
- Red Hat Enterprise Linux 6
- Red Hat Enterprise Linux 7
- Red Hat Enterprise Linux 8
- Red Hat Enterprise Linux 9 — versions 0:8.7p1-38.el9_4.4
- Red Hat Enterprise Linux 9.0 Update Services For Sap Solutions — versions 0:8.7p1-12.el9_0.3
- Red Hat Enterprise Linux 9.2 Extended Update Support — versions 0:8.7p1-30.el9_2.7
- Red Hat Openshift Container Platform 4.13 — versions 413.92.202408122222-0
- Red Hat Openshift Container Platform 4.14 — versions 414.92.202407300859-0
- Red Hat Openshift Container Platform 4.15 — versions 415.92.202407301159-0
Weakness classification (CWE)
Public proof-of-concept exploits
- 20142995/nuclei-templates
- EGI-Federation/SVG-advisories
- GhostTroops/TOP
- bigb0x/OpenSSH-Scanner
- cyb3r-w0lf/nuclei-template-collection
- edsonjt81/https-github.com-gotr00t0day-OpenSSH-Scanner
- fkie-cad/nvd-json-data-feeds
- omegavlg/network-security
- password123456/cve-security-response-guidelines
- ryanalieh/openSSH-scanner
References
- RHSA-2024:4457 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:4613 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:4716 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:4910 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:4955 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:4960 (vendor-advisory, x_refsource_REDHAT)
- RHSA-2024:5444 (vendor-advisory, x_refsource_REDHAT)
- access.redhat.com/security/cve/CVE-2024-6409 (vdb-entry, x_refsource_REDHAT)
- RHBZ#2295085 (issue-tracking, x_refsource_REDHAT)
Frequently asked questions
- What is CVE-2024-6409?
- CVE-2024-6409 is a high-severity vulnerability in Red Hat Enterprise Linux 10, classified under Signal Handler Race Condition. CVSS score: 7.0/10. Published 2024-07-08.
- How severe is CVE-2024-6409?
- High severity. CVSS v3 base score is 7.0 out of 10.
- Is CVE-2024-6409 known to be exploited?
- 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.