cbcvebase.
CVE-2020-11020
published 2020-04-29

CVE-2020-11020: Faye (NPM, RubyGem) versions greater than 0.5.0 and before 1.0.4, 1.1.3 and 1.2.5, has the potential for authentication bypass in the extension system. The…

PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.53%
71.7th percentile
Faye (NPM, RubyGem) versions greater than 0.5.0 and before 1.0.4, 1.1.3 and 1.2.5, has the potential for authentication bypass in the extension system. The vulnerability allows any client to bypass checks put in place by server-side extensions, by appending extra segments to the message channel. It is patched in versions 1.0.4, 1.1.3 and 1.2.5.

Affected

10 ranges
VendorProductVersion rangeFixed in
debianruby-faye< ruby-faye 1.4.0-1 (bookworm)ruby-faye 1.4.0-1 (bookworm)
fayefaye
fayefaye
fayefaye
fayefaye>= 0.5.0 < 1.0.41.0.4
fayefaye>= 1.1.0 < 1.1.31.1.3
fayefaye>= 1.2.0 < 1.2.51.2.5
faye_projectfaye< 1.0.41.0.4
faye_projectfaye>= 1.1.0 < 1.1.31.1.3
faye_projectfaye>= 1.2.0 < 1.2.51.2.5

Detection & IOCsextracted from sources · hover to see the quote

  • Authentication bypass is triggered by appending extra segments to the message channel in Faye's extension system; monitor for channel values with unexpected trailing path segments (e.g., '/meta/connect/extra') in Faye message traffic
  • ·Debian bookworm and bullseye have resolved this via package version 1.4.0-1; confirm package version on Debian-based deployments

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian8.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.