8.8

CVE-2018-5354

Exploit

EPSS 3.92%
Veröffentlicht 30.09.2020 18:15:16
Zuletzt bearbeitet 21.11.2024 04:08:38
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The custom GINA/CP module in ANIXIS Password Reset Client before version 3.22 allows remote attackers to execute code and escalate privileges via spoofing. When the client is configured to use HTTP, it does not authenticate the intended server before opening a browser window. An unauthenticated attacker capable of conducting a spoofing attack can redirect the browser to gain execution in the context of the WinLogon.exe process. If Network Level Authentication is not enforced, the vulnerability can be exploited via RDP.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Anixis ≫ Password Reset Client Version < 3.22

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.92%	0.872

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	5.8	6.5	6.4	AV:A/AC:L/Au:N/C:P/I:P/A:P

CWE-290 Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

http://anixis.com

Vendor Advisory

https://github.com/missing0x00/CVE-2018-5354

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2018-5354

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-5354

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-5354

EUVD