Lucene search

TwcertCVELIST:CVE-2024-6741

HistoryJul 15, 2024 - 8:26 a.m.

CVE-2024-6741 Openfind Mail2000 - HttpOnly flag bypass

2024-07-1508:26:32

CWE-693

twcert

www.cve.org

openfind mail2000

httponly flag

vulnerability

session cookie

theft

javascript code

remote attackers

unauthenticated

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

EPSS

0.001

Percentile

21.0%

JSON

Openfind’s Mail2000 has a vulnerability that allows the HttpOnly flag to be bypassed. Unauthenticated remote attackers can exploit this vulnerability using specific JavaScript code to obtain the session cookie with the HttpOnly flag enabled.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Mail2000 V7.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 131",
        "status": "affected",
        "version": "all",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Mail2000 V8.0",
    "vendor": "Openfind",
    "versions": [
      {
        "lessThan": "Patch 044",
        "status": "affected",
        "version": "all",
        "versionType": "custom"
      }
    ]
  }
]

References

www.openfind.com.tw/taiwan/download/Openfind_OF-ISAC-24-007.pdf

www.twcert.org.tw/en/cp-139-7941-b66e7-2.html

www.twcert.org.tw/tw/cp-132-7940-0177a-1.html

CVSS3

5.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

EPSS

0.001

Percentile

21.0%

JSON

Related for CVELIST:CVE-2024-6741