Lucene search

Veracode Vulnerability DatabaseVERACODE:44739

HistoryDec 19, 2023 - 7:53 a.m.

PKCE Downgrade Attack

2023-12-1907:53:32

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

pkce

downgrade attack

yii2-authclient

vulnerability

insecure implementation

unauthorized access

protected resources

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

26.9%

JSON

yiisoft/yii2-authclient is vulnerable to PKCE Downgrade Attack. The vulnerability is caused due to an insecure implementation of PKCE. The application doesn’t use authCodeVerifier securely. An attacker can gain unauthorized access to protected resources by exploiting this vulnerability.

References

github.com/advisories/GHSA-rw54-6826-c8j5

github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OAuth1.php#L158

github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OAuth2.php#L121

github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OpenIdConnect.php#L420

github.com/yiisoft/yii2-authclient/commit/721ed974bc44137437b0cdc8454e137fff8db213

github.com/yiisoft/yii2-authclient/security/advisories/GHSA-rw54-6826-c8j5

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

26.9%

JSON

Related for VERACODE:44739