CVE-2022-35943

2022-08-1221:15:07

CWE-352

[email protected]

web.nvd.nist.gov

cve

codeigniter

shield

csrf

samesite attackers

security

vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.5%

JSON

Shield is an authentication and authorization framework for CodeIgniter 4. This vulnerability may allow SameSite Attackers to bypass the CodeIgniter4 CSRF protection mechanism with CodeIgniter Shield. For this attack to succeed, the attacker must have direct (or indirect, e.g., XSS) control over a subdomain site (e.g., https://a.example.com/) of the target site (e.g., http://example.com/). Upgrade to CodeIgniter v4.2.3 or later andShield v1.0.0-beta.2 or later. As a workaround: set Config\Security::$csrfProtection to 'session,'remove old session data right after login (immediately after ID and password match) and regenerate CSRF token right after login (immediately after ID and password match)

Affected configurations

Vulners

NVD

Node

codeigniter4shieldRange0.0-beta.2>

CPENameOperatorVersion
codeigniter:codeignitercodeigniterlt4.2.3
codeigniter:shieldcodeigniter shieldeq1.0.0

CPE	Name	Operator	Version
codeigniter:codeigniter	codeigniter	lt	4.2.3
codeigniter:shield	codeigniter shield	eq	1.0.0

CNA Affected

[
  {
    "product": "shield",
    "vendor": "codeigniter4",
    "versions": [
      {
        "status": "affected",
        "version": "> 4.3.2, > v1.0.0-beta.2"
      }
    ]
  }
]