إرسال #383230: Horizon Business Services Inc. Caterease Software 16.0.1.1663 through 24.0.1.2405 CWE-294: Authentication Bypass by Capture-replayالمعلومات

عنوانHorizon Business Services Inc. Caterease Software 16.0.1.1663 through 24.0.1.2405 CWE-294: Authentication Bypass by Capture-replay
الوصفNOTE - This submit shall be embargoed until 14:00 CET on 2024-08-01 - NOTE CVE-2024-38890: An issue in Horizon Business Services Inc. Caterease Software allows a local attacker to perform an Authentication Bypass attack due to insufficient protection against capture-replay attacks. Vulnerability Type: CWE-294: Authentication Bypass by Capture-replay Vendor of the Product: Horizon Business Services Inc. Affected Product: Caterease Software Affected Versions: 16.0.1.1663 through 24.0.1.2405 Attack Vector: Local Attack Type: CAPEC-115: Authentication Bypass Vulnerability Summary: Caterease Software is vulnerable to authentication bypass through a capture-replay attack. This vulnerability arises because the application relies on the UID for authentication without proper session validation. A local attacker can exploit this by capturing the authentication request sent by the client and modifying the UID within the request. By replaying the modified request, the attacker can impersonate any user whose UID is known or can be guessed, gaining unauthorized access to their account. This vulnerability allows attackers to bypass the authentication process and access the application as another user without needing their credentials. Once inside, the attacker can access sensitive information, perform unauthorized actions, and manipulate data. This severely compromises the confidentiality and integrity of user accounts, as it enables unauthorized access and potential data breaches. CVSS Base Score: High Risk - 7.3 CVSS v3.1 Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L Exploitability Metrics Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None Scope (S): Unchanged Impact Metrics Confidentiality (C): High Integrity (I): High Availability (A): Low
المستخدم
 jTag Labs (UID 51246)
ارسال30/07/2024 04:59 PM (2 سنوات منذ)
الاعتدال01/08/2024 02:15 PM (2 days later)
الحالةتمت الموافقة
إدخال VulDB273374 [Horizon Business Services Caterease حتى 24.0.1.2405 توثيق ضعيف]
النقاط17

Interested in the pricing of exploits?

See the underground prices here!