Lucene search

K
githubGitHub Advisory DatabaseGHSA-R3C9-9J5Q-PWV4
HistoryJan 26, 2023 - 7:51 p.m.

magento-lts Reset Password not protected against well-timed CSRF

2023-01-2619:51:48
CWE-352
GitHub Advisory Database
github.com
31
csrf
password reset
vulnerability

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

34.8%

Impact

Password reset form is vulnerable to CSRF between time reset password link is clicked and user submits new password.

Patches

PR forthcoming

Workarounds

None

Affected configurations

Vulners
Node
openmagemagentoRange20.0.020.0.19lts
OR
openmagemagentoRange<19.4.22lts
VendorProductVersionCPE
openmagemagento*cpe:2.3:a:openmage:magento:*:*:*:*:lts:*:*:*

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

34.8%

Related for GHSA-R3C9-9J5Q-PWV4