What the vulnerability does

01Description

The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a result, nodes that do not have the correct authentication key are not prevented from communicating with other nodes in the cluster.

Key dates

02Disclosure timeline

July 28, 2022 CVE published
August 3, 2024 Record updated

Related vulnerabilities

04Related CVE