CVE-2020-29668

Exploit

EPSS 1.04%
Veröffentlicht 10.12.2020 08:15:11
Zuletzt bearbeitet 21.11.2024 05:24:24
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Sympa before 6.2.59b.2 allows remote attackers to obtain full SOAP API access by sending any arbitrary string (except one from an expired cookie) as the cookie value to authenticateAndRun.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sympa ≫ Sympa Version <= 6.2.58

Sympa ≫ Sympa Version6.2.59 Updatebeta1

Fedoraproject ≫ Fedora Version32

Fedoraproject ≫ Fedora Version33

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.04%	0.768

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	3.7	2.2	1.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

CWE-565 Reliance on Cookies without Validation and Integrity Checking

The product relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user.

https://www.debian.org/security/2020/dsa-4818

Third Party Advisory

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976020

Third Party Advisory

Mailing List

https://github.com/sympa-community/sympa/blob/6.2.59b.2/NEWS.md

Third Party Advisory

Release Notes

https://github.com/sympa-community/sympa/issues/1041

Patch

Third Party Advisory

Exploit