Allocation of Resources Without Limits or Throttling in Uyuni SUSE Manager

#VU64571 Allocation of Resources Without Limits or Throttling in Uyuni SUSE Manager

Published: 2022-06-22

Vulnerability identifier: #VU64571

Vulnerability risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-21952

CWE-ID: CWE-770

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Uyuni SUSE Manager
Web applications / Remote management & hosting panels

Vendor:

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to the "/rhn/manager/frontend-log" script takes a text as a POST parameter and then it writes into the "/var/log/rhn/rhn_web_frontend.log" file. A remote non-authenticated attacker can send arbitrary amount of data to the application log and consume all available disk space, cause a denial of service condition.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

External links
http://bugzilla.suse.com/show_bug.cgi?id=1199512

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE update for release-notes-susemanager, release-notes-susemanager-proxy

SUSE update for SUSE Manager Server 4.1

SUSE update for SUSE Manager Server 4.2

SUSE update for Recommended update for SUSE Manager 4.1.15 Release Notes

Multiple vulnerabilities in Uyuni SUSE Manager