CVE-2023-38201

Keylime registrar and (untrusted) Agent can be bypassed by an attacker in pypi/keylime

Identifiers

GHSA-f4r5-q63f-gcww, CVE-2023-38201

Package Slug

pypi/keylime

Vulnerability

Keylime registrar and (untrusted) Agent can be bypassed by an attacker

Description

A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.

Affected Versions

All versions before 7.5.0

Solution

Upgrade to version 7.5.0 or above.

Last Modified

2023-09-07

source