Lucene search

GitHub_MVULNRICHMENT:CVE-2024-24818

HistoryFeb 29, 2024 - 3:17 p.m.

CVE-2024-24818 EspoCRM weakness in "Forgot password"

2024-02-2915:17:16

CWE-610

GitHub_M

github.com

espocrm

weakness

forgot password

arbitrary ip

domain injection

credential stealing

fixed

CVSS3

5.9

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L

AI Score

6.7

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

EspoCRM is an Open Source Customer Relationship Management software. An attacker can inject arbitrary IP or domain in “Password Change” page and redirect victim to malicious page that could lead to credential stealing or another attack. This vulnerability is fixed in 8.1.2.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:espocrm:espocrm:-:*:*:*:*:*:*:*"
    ],
    "vendor": "espocrm",
    "product": "espocrm",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "8.1.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7

github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j

CVSS3

5.9

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L

AI Score

6.7

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-24818