CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
20.5%
label_studio is vulnerable to Hard-coded Credentials. An attacker is able to forge session tokens using the hardcoded secret key, which could allow them to impersonate any user on a vulnerable Label Studio instance. The attacker could exploit this vulnerability by sending a specially crafted HTTP request which contains a forged session token that the attacker generated using the hardcoded secret key. The server would then accept the forged token and authenticate the attacker as the user specified in the token.