Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2024-25128
HistoryFeb 29, 2024 - 1:44 a.m.

CVE-2024-25128

2024-02-2901:44:14
Debian Security Bug Tracker
security-tracker.debian.org
8
flask-appbuilder
auth_type
http request forgery
openid service
unauthorised privilege access
vulnerability
upgrade
flask-appbuilder 4.3.11
openid 2.0 protocol
backend.

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

9.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Flask-AppBuilder is an application development framework, built on top of Flask. When Flask-AppBuilder is set to AUTH_TYPE AUTH_OID, it allows an attacker to forge an HTTP request, that could deceive the backend into using any requested OpenID service. This vulnerability could grant an attacker unauthorised privilege access if a custom OpenID service is deployed by the attacker and accessible by the backend. This vulnerability is only exploitable when the application is using the OpenID 2.0 authorization protocol. Upgrade to Flask-AppBuilder 4.3.11 to fix the vulnerability.

OSVersionArchitecturePackageVersionFilename
Debian999allflask-appbuilder<= 4.1.4+ds-3flask-appbuilder_4.1.4+ds-3_all.deb

Related

cve 1
prion 1
osv 2
cvelist 1
veracode 1
github 1
nvd 1
gitlab 1
hackerone 1
cve
cve
CVE-2024-25128
2024-02-29 01:44:14
prion
prion
Design/Logic Flaw
2024-02-29 01:44:00
osv
osv
Flask-AppBuilder vulnerable to incorrect authentication when using auth type OpenID
2024-02-28 18:37:06
CVE-2024-25128
2024-02-29 01:44:14
cvelist
cvelist
CVE-2024-25128 Flask-AppBuilder incorrect authentication when using auth type OpenID
2024-02-28 15:30:27
veracode
veracode
Authentication Bypass
2024-02-29 05:06:54
github
github
Flask-AppBuilder vulnerable to incorrect authentication when using auth type OpenID
2024-02-28 18:37:06
nvd
nvd
CVE-2024-25128
2024-02-29 01:44:14
gitlab
gitlab
Flask-AppBuilder vulnerable to incorrect authentication when using auth type OpenID
2024-02-28 00:00:00
hackerone
hackerone
Internet Bug Bounty: CVE-2024-25128: Apache Airflow: Authentication Bypass when Legacy OpenID(2.0) is in use as AUTH_TYPE
2024-03-04 16:31:46

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

9.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for DEBIANCVE:CVE-2024-25128
cve1prion1osv2cvelist1veracode1github1nvd1gitlab1hackerone1