Описание
The authentication method in Laravel 8.x through 9.x before 9.32.0 was discovered to be vulnerable to user enumeration via timeless timing attacks with HTTP/2 multiplexing. This is caused by the early return inside the hasValidCredentials method in the Illuminate\Auth\SessionGuard class when a user is found to not exist.
Ссылки
- ExploitTechnical DescriptionThird Party Advisory
- ExploitThird Party Advisory
- PatchVendor Advisory
- Release Notes
- ExploitTechnical DescriptionThird Party Advisory
- ExploitThird Party Advisory
- PatchVendor Advisory
- Release Notes
Уязвимые конфигурации
Конфигурация 1Версия от 8.0.0 (включая) до 8.83.24 (исключая)Версия от 9.0.0 (включая) до 9.32.0 (исключая)
Одно из
cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*
cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00298
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-203
CWE-203
Связанные уязвимости
CVSS3: 5.3
github
почти 3 года назад
The authentication method in Laravel 8.x through 9.x before 9.32.0 was discovered to be vulnerable to user enumeration via timeless timing attacks with HTTP/2 multiplexing. This is caused by the early return inside the hasValidCredentials method in the Illuminate\Auth\SessionGuard class when a user is found to not exist.
EPSS
Процентиль: 53%
0.00298
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-203
CWE-203