Medium severity5.3NVD Advisory· Published Apr 10, 2024· Updated Jun 17, 2026
CVE-2024-1481
CVE-2024-1481
Description
A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16- osv-coords14 versionspkg:rpm/almalinux/ipa-clientpkg:rpm/almalinux/ipa-client-commonpkg:rpm/almalinux/ipa-client-epnpkg:rpm/almalinux/ipa-client-sambapkg:rpm/almalinux/ipa-commonpkg:rpm/almalinux/ipa-selinuxpkg:rpm/almalinux/ipa-serverpkg:rpm/almalinux/ipa-server-commonpkg:rpm/almalinux/ipa-server-dnspkg:rpm/almalinux/ipa-server-trust-adpkg:rpm/almalinux/python3-ipaclientpkg:rpm/almalinux/python3-ipalibpkg:rpm/almalinux/python3-ipaserverpkg:rpm/almalinux/python3-ipatests
< 4.11.0-9.el9_4+ 13 more
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
- (no CPE)range: < 4.11.0-9.el9_4
Patches
Vulnerability mechanics
References
6- access.redhat.com/errata/RHSA-2024:2147nvd
- access.redhat.com/errata/RHSA-2024:3044nvd
- access.redhat.com/security/cve/CVE-2024-1481nvd
- bugzilla.redhat.com/show_bug.cginvd
- lists.debian.org/debian-lts-announce/2024/03/msg00026.htmlnvd
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKTET3PAOMCHBXUUY37X556PVA3DFQES/nvd
News mentions
0No linked articles in our index yet.