CVE-2023-34357

2023-09-0703:15:08

CWE-640

[email protected]

web.nvd.nist.gov

soar cloud ltd

password recovery

weak mechanism

forgotten password

reset link

browser history

account takeover

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

9.0%

JSON

Soar Cloud Ltd. HR Portal has a weak Password Recovery Mechanism for Forgotten Password. The reset password link sent out through e-mail, and the link will remain valid after the password has been reset and after the expected expiration date. An attacker with access to the browser history or has the line can thus use the URL again to change the password in order to take over the account.

Affected configurations

Nvd

Node

scshrhr_portalMatch7.3.2023.0510

scshrhr_portalMatch7.3.2023.0705

VendorProductVersionCPE
scshrhr_portal7.3.2023.0510cpe:2.3:a:scshr:hr_portal:7.3.2023.0510:*:*:*:*:*:*:*
scshrhr_portal7.3.2023.0705cpe:2.3:a:scshr:hr_portal:7.3.2023.0705:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
scshr	hr_portal	7.3.2023.0510	cpe:2.3:a:scshr:hr_portal:7.3.2023.0510:::::::*
scshr	hr_portal	7.3.2023.0705	cpe:2.3:a:scshr:hr_portal:7.3.2023.0705:::::::*