Authentication flaw

2023-09-1123:15:00

PRIOn knowledge base

www.prio-n.com

authentication

flaw

strangebee

cortex

remote

privilege escalation

active directory

9.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.0%

JSON

An issue in StrangeBee TheHive v.5.0.8, v.4.1.21 and Cortex v.3.1.6 allows a remote attacker to gain privileges via Active Directory authentication mechanism.

CPENameOperatorVersion
cortexle3.1.6
thehivelt3.5.2
thehivege4.0.0
thehivele4.1.21
thehivege5.0.0
thehivele5.0.8

Name	Operator	Version
cortex	le	3.1.6
thehive	lt	3.5.2
thehive	ge	4.0.0
thehive	le	4.1.21
thehive	ge	5.0.0
thehive	le	5.0.8

References

github.com/StrangeBeeCorp/Security/blob/main/Security%20advisories/SB-SEC-ADV-2022-001%3A%20Authentication%20bypass%20due%20to%20incomplete%20checks%20in%20the%20Active%20Directory%20authentication%20module.md