| Title | Horizon Business Services Inc. Caterease Software 16.0.1.1663 through 24.0.1.2405 CWE-294: Authentication Bypass by Capture-replay |
|---|
| Description | NOTE - This submit shall be embargoed until 14:00 CET on 2024-08-01 - NOTE
CVE-2024-38890: An issue in Horizon Business Services Inc. Caterease Software allows a local attacker
to perform an Authentication Bypass attack due to insufficient protection against capture-replay attacks.
Vulnerability Type: CWE-294: Authentication Bypass by Capture-replay
Vendor of the Product: Horizon Business Services Inc.
Affected Product: Caterease Software
Affected Versions: 16.0.1.1663 through 24.0.1.2405
Attack Vector: Local
Attack Type: CAPEC-115: Authentication Bypass
Vulnerability Summary: Caterease Software is vulnerable to authentication bypass through a capture-replay
attack. This vulnerability arises because the application relies on the UID for authentication
without proper session validation. A local attacker can exploit this by capturing the authentication request
sent by the client and modifying the UID within the request. By replaying the modified request, the
attacker can impersonate any user whose UID is known or can be guessed, gaining unauthorized access to
their account.
This vulnerability allows attackers to bypass the authentication process and access the application as
another user without needing their credentials. Once inside, the attacker can access sensitive information,
perform unauthorized actions, and manipulate data. This severely compromises the confidentiality and
integrity of user accounts, as it enables unauthorized access and potential data breaches.
CVSS Base Score: High Risk - 7.3
CVSS v3.1 Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Exploitability Metrics
Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Impact Metrics
Confidentiality (C): High
Integrity (I): High
Availability (A): Low |
|---|
| User | jTag Labs (UID 51246) |
|---|
| Submission | 07/30/2024 16:59 (2 years ago) |
|---|
| Moderation | 08/01/2024 14:15 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 273374 [Horizon Business Services Caterease up to 24.0.1.2405 authentication replay] |
|---|
| Points | 17 |
|---|