CVE-2024-41800 Craft CMS Allows TOTP Token To Stay Valid After Use

2024-07-2516:12:58

CWE-287

GitHub_M

www.cve.org

craft cms

totp tokens

authenticated session

cve-2024-41800

security patch

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

25.5%

JSON

Craft is a content management system (CMS). Craft CMS 5 allows reuse of TOTP tokens multiple times within the validity period. An attacker is able to re-submit a valid TOTP token to establish an authenticated session. This requires that the attacker has knowledge of the victim’s credentials. This has been patched in Craft 5.2.3.

CNA Affected

[
  {
    "vendor": "craftcms",
    "product": "cms",
    "versions": [
      {
        "version": ">= 5.0.0-beta.1, < 5.2.3",
        "status": "affected"
      }
    ]
  }
]