CloudStack Management Server Vulnerability: Authentication Bypass via X-Forwarded-For Header
CVE-2024-29006

9.8CRITICAL

Key Information:

Vendor: Apache
Status: Apache Cloudstack
Vendor: CVE Published:; 4 April 2024

What is CVE-2024-29006?

The Apache CloudStack management server's default configuration allows it to process the x-forwarded-for HTTP header, using it to log the source IP of API requests. This can result in potential exploitation by attackers who can spoof their IP addresses, leading to authentication bypass and various operational issues. Users are strongly advised to upgrade to CloudStack versions 4.18.1.1 or 4.19.0.1 to mitigate this vulnerability and enhance their security posture.

Affected Version(s)

Apache CloudStack 4.11.0.0 <= 4.18.1.0

Apache CloudStack 4.19.0.0

References

https://lists.apache.org/thread/82f46pv7mvh95ybto5hn8wlo6...

vendor-advisory

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2024