{
  "threat_severity" : "Low",
  "public_date" : "2024-01-04T00:00:00Z",
  "bugzilla" : {
    "description" : "audited: race condition can lead to audit logs being incorrectly attributed to the wrong user",
    "id" : "2256891",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2256891"
  },
  "cvss3" : {
    "cvss3_base_score" : "3.1",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
    "status" : "verified"
  },
  "cwe" : "CWE-362",
  "details" : [ "A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.", "A race condition flaw was found in Audited. This issue may allow an authenticated user to attribute audit log entries to another user." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Satellite 6.15 for RHEL 8",
    "release_date" : "2024-04-23T00:00:00Z",
    "advisory" : "RHSA-2024:2010",
    "cpe" : "cpe:/a:redhat:satellite:6.15::el8",
    "package" : "rubygem-audited-0:5.4.2-1.el8sat"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2024-22047\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-22047" ],
  "name" : "CVE-2024-22047",
  "csaw" : false
}