Lucene search

GoogleOSV:CVE-2024-41800

HistoryJul 25, 2024 - 5:15 p.m.

CVE-2024-41800

2024-07-2517:15:11

Google

osv.dev

craft cms

totp tokens

authenticated session

security patch

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

25.5%

JSON

Craft is a content management system (CMS). Craft CMS 5 allows reuse of TOTP tokens multiple times within the validity period. An attacker is able to re-submit a valid TOTP token to establish an authenticated session. This requires that the attacker has knowledge of the victim’s credentials. This has been patched in Craft 5.2.3.

References

github.com/craftcms/cms/commit/7c790fa5ad5a8cb8016cb6793ec3554c4c079e38

github.com/craftcms/cms/releases/tag/5.2.3

github.com/craftcms/cms/security/advisories/GHSA-wmx7-pw49-88jx

github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240617-01_CraftCMS_TOTP_Valid_After_Use

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

25.5%

JSON

Related for OSV:CVE-2024-41800