CVE-2024-27918

Summary

CVE-2024-27918 is a vulnerability in Coder's OIDC authentication that affects instances of Coder with OIDC enabled and protected by the `CODER_OIDC_EMAIL_DOMAIN` configuration. Versions prior to 2.6.1, 2.7.3, and 2.8.4 are vulnerable. The vulnerability allows an attacker to bypass email domain verification and create an account with an email not in the allowlist if the OIDC provider allows users to create accounts on the provider. An attacker could exploit this by registering a domain name that partially matches an allowed domain and then register on a Coder instance with a public OIDC provider. The potential danger posed is high as it could allow unauthorized access to the organization's development environments. To remediate the vulnerability, affected organizations should update to versions 2.6.1, 2.7.3, or 2.8.4 of Coder or apply any patches provided by the vendor.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.