Lucene search

K
vulnrichmentGitHub_MVULNRICHMENT:CVE-2024-52287
HistoryNov 21, 2024 - 5:23 p.m.

CVE-2024-52287 authentik performs insufficient validation of OAuth scopes

2024-11-2117:23:40
CWE-285
GitHub_M
github.com
2
authentik
oauth
validation
fix
2024

CVSS4

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/SC:H/VI:N/SI:H/VA:N/SA:H

AI Score

6.5

Confidence

High

EPSS

0

Percentile

10.3%

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

authentik is an open-source identity provider. When using the client_credentials or device_code OAuth grants, it was possible for an attacker to get a token from authentik with scopes that haven’t been configured in authentik. authentik 2024.8.5 and 2024.10.3 fix this issue.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:goauthentik:authentik:*:*:*:*:*:*:*:*"
    ],
    "vendor": "goauthentik",
    "product": "authentik",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "2024.8.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2024.10.0-rc1",
        "lessThan": "2024.10.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

CVSS4

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/SC:H/VI:N/SI:H/VA:N/SA:H

AI Score

6.5

Confidence

High

EPSS

0

Percentile

10.3%

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

Related for VULNRICHMENT:CVE-2024-52287