Lucene search

GitHub Advisory DatabaseGHSA-MQ3Q-JJPH-RP5P

HistoryMay 01, 2022 - 11:39 p.m.

Plone CMS Improper Session Management

2022-05-0123:39:37

GitHub Advisory Database

github.com

plone cms

session management

base64 encoding

remote attackers

network sniffing

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

Plone CMS before 3 places a base64 encoded form of the username and password in the __ac cookie for all user accounts, which makes it easier for remote attackers to obtain access by sniffing the network.

Affected configurations

Vulners

Node

ploneploneRange<3.0

References

plone.org/about/security/overview/security-overview-of-plone

securityreason.com/securityalert/3754

www.procheckup.com/Hacking_Plone_CMS.pdf

www.securityfocus.com/archive/1/489544/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/41425

github.com/advisories/GHSA-mq3q-jjph-rp5p

nvd.nist.gov/vuln/detail/CVE-2008-1394

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

Related for GHSA-MQ3Q-JJPH-RP5P