Lucene search

GitHub Advisory DatabaseGHSA-X72P-G37Q-4XR9

HistoryJul 22, 2024 - 9:31 a.m.

Withdrawn: SFTPGo's JWT implmentation lacks certain security measures

2024-07-2209:31:55

CWE-323

CWE-639

GitHub Advisory Database

github.com

sftpgo

jwt

security measures

jti claims

nonces

expiration

invalidation

AI Score

5.3

Confidence

High

EPSS

Percentile

9.6%

JSON

Withdrawn:
The attack vector described in the backing report required that an attacker gain access to a user’s session cookie. By gaining access to the session cookie the attacker is for all intents and purposes the valid user and any access to user data would be expected.

~In SFTPGo 2.6.2, the JWT implementation lacks certain security measures, such as using JWT ID (JTI) claims, nonces, and proper expiration and invalidation mechanisms.~

Affected configurations

Vulners

Node

drakkansftpgoRange≤2.6.2

VendorProductVersionCPE
drakkansftpgo*cpe:2.3:a:drakkan:sftpgo:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
drakkan	sftpgo	*	cpe:2.3:a:drakkan:sftpgo::::::::

References

alexsecurity.rocks/posts/cve-2024-40430

github.com/advisories/GHSA-x72p-g37q-4xr9

github.com/github/advisory-database/pull/4645

nvd.nist.gov/vuln/detail/CVE-2024-40430