CVE-2020-26223

Опубликовано: 13 нояб. 2020

Источник: nvd

CVSS3: 7.7

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Spree is a complete open source e-commerce solution built with Ruby on Rails. In Spree from version 3.7 and before versions 3.7.13, 4.0.5, and 4.1.12, there is an authorization bypass vulnerability. The perpetrator could query the API v2 Order Status endpoint with an empty string passed as an Order token. This is patched in versions 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version. Users of Spree < 3.7 are not affected.

Ссылки

https://github.com/spree/spree/pull/10573
Exploit
Patch
Third Party Advisory
https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmpr
Third Party Advisory
https://guides.spreecommerce.org/api/v2/storefront#tag/Order-Status
Vendor Advisory
https://github.com/spree/spree/pull/10573
Exploit
Patch
Third Party Advisory
https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmpr
Third Party Advisory
https://guides.spreecommerce.org/api/v2/storefront#tag/Order-Status
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:spreecommerce:spree:*:*:*:*:*:*:*:*

Версия от 3.7.0 (включая) до 3.7.13 (исключая)

cpe:2.3:a:spreecommerce:spree:*:*:*:*:*:*:*:*

Версия от 4.0.0 (включая) до 4.0.5 (исключая)

cpe:2.3:a:spreecommerce:spree:*:*:*:*:*:*:*:*

Версия от 4.1.0 (включая) до 4.1.12 (исключая)

EPSS

Процентиль: 50%

0.00267

Низкий

7.7 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-863

Связанные уязвимости

GHSA-m2jr-hmc3-qmpr

CVSS3: 7.7

github

около 5 лет назад

Authorization bypass in Spree

EPSS

Процентиль: 50%

0.00267

Низкий

7.7 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-863