Lucene search

GoogleOSV:GHSA-VJ36-3CCR-6563

HistoryFeb 17, 2024 - 6:30 a.m.

Authentication Bypass by Spoofing in github.com/greenpau/caddy-security

2024-02-1706:30:34

Google

osv.dev

authentication bypass spoofing

input sanitization

unauthorized access

user identity module

github.com/greenpau

vulnerability

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

All versions of the package github.com/greenpau/caddy-security are vulnerable to Authentication Bypass by Spoofing via the X-Forwarded-For header due to improper input sanitization. An attacker can spoof an IP address used in the user identity module (/whoami API endpoint). This could lead to unauthorized access if the system trusts this spoofed IP address.

CPENameOperatorVersion
github.com/greenpau/caddy-securityle1.1.23

CPE	Name	Operator	Version
	github.com/greenpau/caddy-security	le	1.1.23

References

github.com/greenpau/caddy-security

blog.trailofbits.com/2023/09/18/security-flaws-in-an-sso-plugin-for-caddy

github.com/greenpau/caddy-security/issues/266

nvd.nist.gov/vuln/detail/CVE-2024-21494

security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGREENPAUCADDYSECURITY-6249859

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

Related for OSV:GHSA-VJ36-3CCR-6563