CVE-2017-16570

Опубликовано: 06 нояб. 2017

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

KeystoneJS before 4.0.0-beta.7 allows application-wide CSRF bypass by removing the CSRF parameter and value, aka SecureLayer7 issue number SL7_KEYJS_03. In other words, it fails to reject requests that lack an x-csrf-token header.

Ссылки

http://blog.securelayer7.net/keystonejs-open-source-penetration-testing-report/
Issue Tracking
Third Party Advisory
https://github.com/keystonejs/keystone/issues/4437
Issue Tracking
Third Party Advisory
https://github.com/keystonejs/keystone/pull/4478
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/43922/
http://blog.securelayer7.net/keystonejs-open-source-penetration-testing-report/
Issue Tracking
Third Party Advisory
https://github.com/keystonejs/keystone/issues/4437
Issue Tracking
Third Party Advisory
https://github.com/keystonejs/keystone/pull/4478
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/43922/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:keystonejs:keystone:*:beta7:*:*:*:*:*:*

Версия до 4.0.0 (исключая)

EPSS

Процентиль: 42%

0.00198

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-q43c-g2g7-6gxj