Auth bypass in 9front

CVE-2024-8158

A bug in the 9p authentication implementation within lib9p allows an attacker with an existing valid user within the configured auth server to impersonate any other valid filesystem user. This is due to lib9p not properly verifying that t…

Vulnerability class: IDOR (Insecure Direct Object Reference)

EPSS: 0.001 (16.9th percentile) — read the EPSS interpretation.

Affected products

9front — versions 0

Weakness classification (CWE)

CWE-639 — Authorization Bypass Through User-Controlled Key

References

git.9front.org/plan9front/plan9front/07aa9bfeef55ca987d411115adcfbbd4390ecf34/c… (patch)