GHSA-9vh6-qfv6-vcqp

Опубликовано: 03 мая 2022

Источник: github

Github: Прошло ревью

CVSS3: 8.8

Описание

snipe-IT vulnerable to host header injection

Snipe-IT is a free, open-source IT asset/license management systemIn Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Header Injection. By sending a specially crafted host header in the reset password request, it is possible to send password reset links to users which once clicked lead to an attacker controlled server and thus leading to password reset token leak. This can lead to account take over.

Ссылки

Пакеты

Наименование

snipe/snipe-it

composer

Затронутые версииВерсия исправления

>= 3.0-alpha, <= 5.3.7

5.4.0

EPSS

Процентиль: 63%

0.00444

Низкий

8.8 High

CVSS3

CVE ID

CVE-2022-23064

Дефекты

CWE-74

Связанные уязвимости

CVE-2022-23064

CVSS3: 8.8

nvd

почти 4 года назад

In Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Header Injection. By sending a specially crafted host header in the reset password request, it is possible to send password reset links to users which once clicked lead to an attacker controlled server and thus leading to password reset token leak. This leads to account take over.

CVE-2022-23064

CVSS3: 8.8

debian

почти 4 года назад

In Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Head ...

BDU:2022-03415

CVSS3: 8.8

fstec

около 4 лет назад

Уязвимость функции сброса пароля системы управления ИТ-активами Snipe-IT, позволяющая нарушителю получить токен сброса пароля и доступ к аккаунту

EPSS

Процентиль: 63%

0.00444

Низкий

8.8 High

CVSS3

CVE ID

CVE-2022-23064

Дефекты

CWE-74