CVE-2024-34709

Exploit

EPSS 0.23%
Veröffentlicht 14.05.2024 15:39:31
Zuletzt bearbeitet 03.01.2025 16:20:01
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 10.11.0, session tokens function like the other JWT tokens where they are not actually invalidated when logging out. The `directus_session` gets destroyed and the cookie gets deleted but if the cookie value is captured, it will still work for the entire expiry time which is set to 1 day by default. Making it effectively a long lived unrevokable stateless token instead of the stateful session token it was meant to be. This vulnerability is fixed in 10.11.0.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Monospace ≫ Directus SwPlatformnode.js Version < 10.11.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.452

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	1.2	4.2	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
security-advisories@github.com	5.4	1.2	4.2	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N

CWE-613 Insufficient Session Expiration

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

https://github.com/directus/directus/commit/a6172f8a6a0f31a6bf4305a090de172ebfb63bcf

Patch

https://github.com/directus/directus/security/advisories/GHSA-g65h-35f3-x2w3

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-34709

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-34709

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-34709

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-34709