CVE-2020-10966

Опубликовано: 25 мар. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

In the Password Reset Module in VESTA Control Panel through 0.9.8-25 and Hestia Control Panel before 1.1.1, Host header manipulation leads to account takeover because the victim receives a reset URL containing an attacker-controlled server name.

Ссылки

https://github.com/hestiacp/hestiacp/issues/748
Exploit
Third Party Advisory
https://github.com/hestiacp/hestiacp/releases/tag/1.1.1
Third Party Advisory
https://github.com/serghey-rodin/vesta/commit/c3c4de43d6701560f604ca7996f717b08e3d7d1d
Patch
Third Party Advisory
https://github.com/hestiacp/hestiacp/issues/748
Exploit
Third Party Advisory
https://github.com/hestiacp/hestiacp/releases/tag/1.1.1
Third Party Advisory
https://github.com/serghey-rodin/vesta/commit/c3c4de43d6701560f604ca7996f717b08e3d7d1d
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hestiacp:control_panel:*:*:*:*:*:*:*:*

Версия до 1.1.1 (исключая)

cpe:2.3:a:vestacp:control_panel:*:*:*:*:*:*:*:*

Версия до 0.9.8-25 (включая)

EPSS

Процентиль: 66%

0.00505

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-qwg2-rf9c-v87f