CVE-2021-25957 Account Takeover in "Dolibarr" via Password Reset Functionality

2021-08-1714:13:30

CWE-640

Mend

www.cve.org

cve-2021-25957

dolibarr

account takeover

password reset

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

In “Dolibarr” application, v2.8.1 to v13.0.2 are vulnerable to account takeover via password reset functionality. A low privileged attacker can reset the password of any user in the application using the password reset link the user received through email when requested for a forgotten password.

CNA Affected

[
  {
    "product": "dolibarr",
    "vendor": "Dolibarr",
    "versions": [
      {
        "changes": [
          {
            "at": "2.8.1",
            "status": "affected"
          }
        ],
        "lessThanOrEqual": "13.0.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]