Lucene search

Veracode Vulnerability DatabaseVERACODE:46892

HistoryMay 14, 2024 - 6:51 a.m.

Account Takeover

2024-05-1406:51:33

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vulnerability

validation

confirmation hash

token expiration

password reset

attacker

account

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

mantisbt/mantisbt is vulnerable to Account Takeover. The vulnerability is due to insufficient validation of the confirmation hash and token expiration during the password reset process, allowing an attacker to reset another user’s password and take over their account.

CPENameOperatorVersion
mantisbt/mantisbtle2.26.1
mantisbt/mantisbtle2.26.1

CPE	Name	Operator	Version
	mantisbt/mantisbt	le	2.26.1
	mantisbt/mantisbt	le	2.26.1

References

github.com/advisories/GHSA-93x3-m7pw-ppqm

github.com/mantisbt/mantisbt/commit/92d11a01b195a1b6717a2f205218089158ea6d00

github.com/mantisbt/mantisbt/security/advisories/GHSA-93x3-m7pw-ppqm

mantisbt.org/bugs/view.php?id=34433

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

Related for VERACODE:46892