CVE-2023-34246

2023-06-1200:00:00

ubuntu.com

doorkeeper

oauth 2

ruby on rails

grape

authorization

vulnerability

public clients

impersonation

identity assurance

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

EPSS

0.002

Percentile

55.9%

JSON

Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to
version 5.6.6, Doorkeeper automatically processes authorization requests
without user consent for public clients that have been previous approved.
Public clients are inherently vulnerable to impersonation, their identity
cannot be assured. This issue is fixed in version 5.6.6.

Notes

Author	Note
sbeattie	need to verify ruby-doorkeeper-openid-connect as well

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchruby-doorkeeper< 4.3.1-1ubuntu0.1~esm1UNKNOWN
ubuntu20.04noarchruby-doorkeeper< 5.0.2-2ubuntu0.1UNKNOWN
ubuntu22.04noarchruby-doorkeeper< 5.5.0-2ubuntu0.22.04.1UNKNOWN
ubuntu22.10noarchruby-doorkeeper< 5.5.0-2ubuntu0.22.10.1UNKNOWN
ubuntu23.04noarchruby-doorkeeper< 5.5.0-2ubuntu0.23.04.1UNKNOWN
ubuntu24.04noarchruby-doorkeeper< anyUNKNOWN
ubuntu16.04noarchruby-doorkeeper< 2.2.1-1ubuntu0.1~esm1UNKNOWN
ubuntu24.04noarchruby-doorkeeper-openid-connect< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	ruby-doorkeeper	< 4.3.1-1ubuntu0.1~esm1	UNKNOWN
ubuntu	20.04	noarch	ruby-doorkeeper	< 5.0.2-2ubuntu0.1	UNKNOWN
ubuntu	22.04	noarch	ruby-doorkeeper	< 5.5.0-2ubuntu0.22.04.1	UNKNOWN
ubuntu	22.10	noarch	ruby-doorkeeper	< 5.5.0-2ubuntu0.22.10.1	UNKNOWN
ubuntu	23.04	noarch	ruby-doorkeeper	< 5.5.0-2ubuntu0.23.04.1	UNKNOWN
ubuntu	24.04	noarch	ruby-doorkeeper	< any	UNKNOWN
ubuntu	16.04	noarch	ruby-doorkeeper	< 2.2.1-1ubuntu0.1~esm1	UNKNOWN
ubuntu	24.04	noarch	ruby-doorkeeper-openid-connect	< any	UNKNOWN