Lucene search

Veracode Vulnerability DatabaseVERACODE:47503

HistoryJun 13, 2024 - 4:50 a.m.

Authentication Bypass

2024-06-1304:50:20

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

authentication bypass

open redirects

session tokens

unauthenticated attacker

third-party tokens

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

@strapi/plugin-users-permissions is vulnerable to Authentication Bypass. The vulnerability is caused due to improper handling of Open Redirects and session tokens being sent as URL query parameters, allowing an unauthenticated attacker to retrieve third-party tokens with one user click.

CPENameOperatorVersion
@strapi/plugin-users-permissionsle4.24.1
@strapi/plugin-users-permissionsle4.24.1

CPE	Name	Operator	Version
	@strapi/plugin-users-permissions	le	4.24.1
	@strapi/plugin-users-permissions	le	4.24.1

References

github.com/advisories/GHSA-wrvh-rcmr-9qfc

github.com/strapi/strapi/commit/9c79921d22142a5de77ea26151550a14e4b12669

github.com/strapi/strapi/security/advisories/GHSA-wrvh-rcmr-9qfc

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

Related for VERACODE:47503