Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-7R87-CJ48-WJ45
HistoryApr 26, 2022 - 9:19 p.m.

Potential Captcha Validate Bypass in flask-session-captcha

2022-04-2621:19:52
CWE-253
CWE-394
CWE-754
GitHub Advisory Database
github.com
56
flask-session-captcha
validate bypass
fix available
workaround
user extension
image based captcha
server side session
package
security issue
github repo.

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

34.7%

JSON

Impact

flask-session-captcha is a package which allows users to extend Flask by adding an image based captcha stored in a server side session.

The captcha.validate() function would return None if passed no value (e.g. by submitting a request with an empty form).

If implementing users were checking the return value to be False, the captcha verification check could be bypassed.

Sample vulnerable code:

if captcha.validate() == False:
    ... # abort
else:
   ... # do stuff

Patches

A new version (1.2.1) is available that fixes the issue.

Workarounds

Users can workaround the issue by not explicitly checking that the value is False.

Checking the return value less explicitly should still work.

if not captcha.validate():
    ... # abort
else:
   ... # do stuff

if captcha.validate():
    ... # do stuff
else:
   ... # abort

References

https://github.com/Tethik/flask-session-captcha/pull/27

For more information

If you have any questions or comments about this advisory:

Affected configurations

Vulners
Node
flask-session-captcha_projectflask-session-captchaRange<1.2.1
VendorProductVersionCPE
flask-session-captcha_projectflask-session-captcha*cpe:2.3:a:flask-session-captcha_project:flask-session-captcha:*:*:*:*:*:*:*:*

Related

veracode 1
osv 3
cvelist 1
cve 1
prion 1
nvd 1
veracode
veracode
Insecure Return Value
2022-04-26 05:14:31
osv
osv
Potential Captcha Validate Bypass in flask-session-captcha
2022-04-26 21:19:52
PYSEC-2022-193
2022-04-25 22:15:00
CVE-2022-24880
2022-04-25 22:15:43
cvelist
cvelist
CVE-2022-24880 Potential Captcha Validate Bypass in flask-session-captcha
2022-04-25 22:10:13
cve
cve
CVE-2022-24880
2022-04-25 22:15:43
prion
prion
Session fixation
2022-04-25 22:15:00
nvd
nvd
CVE-2022-24880
2022-04-25 22:15:43

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

34.7%

JSON
Related for GHSA-7R87-CJ48-WJ45
veracode1osv3cvelist1cve1prion1nvd1