CVE-2021-29624

EPSS 0.83%
Veröffentlicht 19.05.2021 22:15:07
Zuletzt bearbeitet 21.11.2024 06:01:31
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Lack of protection against cookie tossing attacks in fastify-csrf

fastify-csrf is an open-source plugin helps developers protect their Fastify server against CSRF attacks. Versions of fastify-csrf prior to 3.1.0 have a "double submit" mechanism using cookies with an application deployed across multiple subdomains, e.g. "heroku"-style platform as a service. Version 3.1.0 of the fastify-csrf fixes it. the vulnerability. The user of the module would need to supply a `userInfo` when generating the CSRF token to fully implement the protection on their end. This is needed only for applications hosted on different subdomains.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 2 Referenzen 9

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Fastify ≫ Fastify-csrf SwPlatformnode.js Version < 3.1.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.83%	0.527

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

CWE-565 Reliance on Cookies without Validation and Integrity Checking

The product relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user.

https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html

Third Party Advisory

https://github.com/fastify/csrf/pull/2

Patch

Third Party Advisory

https://github.com/fastify/fastify-csrf/pull/51

Patch

Third Party Advisory

https://github.com/fastify/fastify-csrf/releases/tag/v3.1.0

Third Party Advisory

https://github.com/fastify/fastify-csrf/security/advisories/GHSA-rc4q-9m69-gqp8

Patch

Third Party Advisory

https://owasp.org/www-pdf-archive/David_Johansson-Double_Defeat_of_Double-Submit_Cookie.pdf

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-29624

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-29624

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-29624

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-29624