CVE-2020-15128Reliance on Cookies without Validation and Integrity Checking in October

CWE-565Reliance on Cookies without Validation and Integrity CheckingCWE-327Use of a Broken or Risky Cryptographic Algorithm3 documents3 sources
Severity
6.3MEDIUMNVD
EPSS
0.1%
top 70.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Octobercms OctoberOctober Rain
Timeline
PublishedJul 31
Latest updateAug 5

Description

In OctoberCMS before version 1.0.468, encrypted cookie values were not tied to the name of the cookie the value belonged to. This meant that certain classes of attacks that took advantage of other theoretical vulnerabilities in user facing code (nothing exploitable in the core project itself) had a higher chance of succeeding. Specifically, if your usage exposed a way for users to provide unfiltered user input and have it returned to them as an encrypted cookie (ex. storing a user provided searc

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:NExploitability: 1.8 | Impact: 4.0

Affected Packages2 packages

NVDoctobercms/october< 1.0.468
Packagistoctober/rain1.0.3191.0.468

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

2
GHSA
Reliance on Cookies without validation in OctoberCMS2020-08-05
OSV
Reliance on Cookies without validation in OctoberCMS2020-08-05