CVE-2024-37905 - Vulnerability Details - OpenCVE

authentik is an open-source Identity Provider that emphasizes flexibility and versatility. Authentik API-Access-Token mechanism can be exploited to gain admin user privileges. A successful exploit of the issue will result in a user gaining full admin access to the Authentik application, including resetting user passwords and more. This issue has been patched in version(s) 2024.2.4, 2024.4.2 and 2024.6.0.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Goauthentik	Authentik

Configuration 1 [-]

OR	cpe:2.3:a:goauthentik:authentik::::::::
	cpe:2.3:a:goauthentik:authentik::::::::

No data.

References

Link	Providers
https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4
https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3
https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0
https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4

History

Thu, 21 Aug 2025 16:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:goauthentik:authentik::::::::

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-06-28T17:09:24.090Z

Updated: 2024-08-02T04:04:23.359Z

Reserved: 2024-06-10T19:54:41.362Z

Link: CVE-2024-37905

Vulnrichment

Updated: 2024-08-02T04:04:23.359Z

NVD

Status : Analyzed

Published: 2024-06-28T18:15:04.400

Modified: 2025-08-21T16:14:04.573

Link: CVE-2024-37905

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-37905", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-06-10T19:54:41.362Z", "datePublished": "2024-06-28T17:09:24.090Z", "dateUpdated": "2024-08-02T04:04:23.359Z"}, "containers": {"cna": {"title": "Improper Access Control and Incorrect Authorization in github.com/goauthentik/authentik", "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "lang": "en", "description": "CWE-284: Improper Access Control", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-863", "lang": "en", "description": "CWE-863: Incorrect Authorization", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "tags": ["x_refsource_MISC"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "tags": ["x_refsource_MISC"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "tags": ["x_refsource_MISC"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0"}], "affected": [{"vendor": "goauthentik", "product": "authentik", "versions": [{"version": "< 2024.6.0", "status": "affected"}, {"version": "< 2024.4.2", "status": "affected"}, {"version": "< 2024.2.4", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-06-28T17:09:24.090Z"}, "descriptions": [{"lang": "en", "value": "authentik is an open-source Identity Provider that emphasizes flexibility and versatility. Authentik API-Access-Token mechanism can be exploited to gain admin user privileges. A successful exploit of the issue will result in a user gaining full admin access to the Authentik application, including resetting user passwords and more. This issue has been patched in version(s) 2024.2.4, 2024.4.2 and 2024.6.0.\n"}], "source": {"advisory": "GHSA-c78c-2r9w-p7x4", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "goauthentik", "product": "authentik", "cpes": ["cpe:2.3:a:goauthentik:authentik:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "2024.6.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "2024.4.2", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "2024.2.4", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-02T17:03:36.338117Z", "id": "CVE-2024-37905", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-02T17:10:49.903Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:04:23.359Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3"}, {"name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "name": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:04:23.359Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-37905", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-02T17:03:36.338117Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:goauthentik:authentik:*:*:*:*:*:*:*:*"], "vendor": "goauthentik", "product": "authentik", "versions": [{"status": "affected", "version": "0", "lessThan": "2024.6.0", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "2024.4.2", "versionType": "custom"}, {"status": "affected", "version": "0", "lessThan": "2024.2.4", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-02T17:08:46.487Z"}}], "cna": {"title": "Improper Access Control and Incorrect Authorization in github.com/goauthentik/authentik", "source": {"advisory": "GHSA-c78c-2r9w-p7x4", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "goauthentik", "product": "authentik", "versions": [{"status": "affected", "version": "< 2024.6.0"}, {"status": "affected", "version": "< 2024.4.2"}, {"status": "affected", "version": "< 2024.2.4"}]}], "references": [{"url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "name": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "name": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "authentik is an open-source Identity Provider that emphasizes flexibility and versatility. Authentik API-Access-Token mechanism can be exploited to gain admin user privileges. A successful exploit of the issue will result in a user gaining full admin access to the Authentik application, including resetting user passwords and more. This issue has been patched in version(s) 2024.2.4, 2024.4.2 and 2024.6.0.\n"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284: Improper Access Control"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-863", "description": "CWE-863: Incorrect Authorization"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-06-28T17:09:24.090Z"}}}, "cveMetadata": {"cveId": "CVE-2024-37905", "state": "PUBLISHED", "dateUpdated": "2024-08-02T04:04:23.359Z", "dateReserved": "2024-06-10T19:54:41.362Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-06-28T17:09:24.090Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:goauthentik:authentik:*:*:*:*:*:*:*:*", "matchCriteriaId": "ED1F1937-A547-440E-8D37-5830973FDB91", "versionEndExcluding": "2024.2.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:goauthentik:authentik:*:*:*:*:*:*:*:*", "matchCriteriaId": "FB436255-F93A-4090-96AE-3AF72C6F68E2", "versionEndExcluding": "2024.4.3", "versionStartIncluding": "2024.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "authentik is an open-source Identity Provider that emphasizes flexibility and versatility. Authentik API-Access-Token mechanism can be exploited to gain admin user privileges. A successful exploit of the issue will result in a user gaining full admin access to the Authentik application, including resetting user passwords and more. This issue has been patched in version(s) 2024.2.4, 2024.4.2 and 2024.6.0.\n"}, {"lang": "es", "value": "authentik es un proveedor de identidades de c\u00f3digo abierto que enfatiza la flexibilidad y la versatilidad. El mecanismo Authentik API-Access-Token se puede explotar para obtener privilegios de usuario administrador. Una explotaci\u00f3n exitosa del problema dar\u00e1 como resultado que un usuario obtenga acceso de administrador completo a la aplicaci\u00f3n Authentik, incluido el restablecimiento de contrase\u00f1as de usuario y m\u00e1s. Este problema se solucion\u00f3 en las versiones 2024.2.4, 2024.4.2 y 2024.6.0."}], "id": "CVE-2024-37905", "lastModified": "2025-08-21T16:14:04.573", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-06-28T18:15:04.400", "references": [{"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4"}, {"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3"}, {"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.2.4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.4.3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://github.com/goauthentik/authentik/releases/tag/version%2F2024.6.0"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/goauthentik/authentik/security/advisories/GHSA-c78c-2r9w-p7x4"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}, {"lang": "en", "value": "CWE-863"}], "source": "security-advisories@github.com", "type": "Secondary"}]}