CVE-2019-18823 : Security Advisory and Response

HTCondor versions 8.8.6 and 8.9.4 have been found to have an Incorrect Access Control vulnerability that allows unauthorized access to condor_schedd, potentially leading to unauthorized actions.

Understanding CVE-2019-18823

This CVE identifies an Incorrect Access Control vulnerability in HTCondor versions 8.8.6 and 8.9.4, enabling users to impersonate others and perform unauthorized actions.

What is CVE-2019-18823?

CVE-2019-18823 is an Incorrect Access Control vulnerability in HTCondor versions 8.8.6 and 8.9.4, allowing users to bypass specified authentication methods.

The Impact of CVE-2019-18823

The vulnerability permits users to utilize authentication methods other than those set by the administrator, potentially leading to unauthorized access and actions within condor_schedd.

Technical Details of CVE-2019-18823

HTCondor versions 8.8.6 and 8.9.4 are affected by an Incorrect Access Control vulnerability.

Vulnerability Description

Users can exploit the vulnerability to impersonate other users and gain unauthorized access to condor_schedd, enabling actions like job submission or removal.

Affected Systems and Versions

HTCondor versions 8.8.6 and 8.9.4 (both stable and development series)

Exploitation Mechanism

Users can bypass administrator-specified authentication methods, such as READ or WRITE methods incorporating CLAIMTOBE, to impersonate other users.

Mitigation and Prevention

To address CVE-2019-18823, follow these steps:

Immediate Steps to Take

Update HTCondor to a patched version.
Monitor system logs for suspicious activities.
Restrict network access to vulnerable systems.

Long-Term Security Practices

Implement least privilege access controls.
Regularly review and update access control policies.

Patching and Updates

Apply security patches provided by HTCondor to fix the vulnerability.