CVE-2022-32430
published 2022-07-21CVE-2022-32430: An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
PriorityP353high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
3.63%
88.1th percentile
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| talelin | lin-cms-spring-boot | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring GET requests to /cms/admin/group/all with a hardcoded default JWT Bearer token in the Authorization header returning HTTP 200 with JSON body fields 'id', 'name', 'level'. ↗
- →Fingerprint exposed Lin CMS Spring Boot instances via Shodan/FOFA using the application's distinctive Chinese-language HTML body string. ↗
- ·The hardcoded default JWT token has a fixed expiry (exp: 1753193479); defenders should monitor for this exact token value regardless of expiry, as attackers may forge new tokens using the same leaked secret key. ↗
- ·Vulnerability is confirmed only against Lin CMS Spring Boot v0.2.1; other versions are not confirmed affected. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Hardcoded JWT Token in Lin CMS Spring Boot
osv·2022-07-22
CVE-2022-32430 [HIGH] Hardcoded JWT Token in Lin CMS Spring Boot
Hardcoded JWT Token in Lin CMS Spring Boot
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
GHSA
Hardcoded JWT Token in Lin CMS Spring Boot
ghsa·2022-07-22
CVE-2022-32430 [HIGH] CWE-668 Hardcoded JWT Token in Lin CMS Spring Boot
Hardcoded JWT Token in Lin CMS Spring Boot
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
No detection rules found.
Nuclei
Lin CMS Spring Boot - Default JWT Token
nuclei·CVSS 7.5
CVE-2022-32430 [HIGH] Lin CMS Spring Boot - Default JWT Token
Lin CMS Spring Boot - Default JWT Token
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
Template:
id: CVE-2022-32430
info:
name: Lin CMS Spring Boot - Default JWT Token
author: DhiyaneshDK
severity: high
description: |
An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application.
impact: |
Unauthenticated attackers can access backend administrative information and functions using a hardcoded default JWT token, potentially gaining complete control over the Lin CMS Spring Boot application including user management and content administration.
remediation: |
Update Lin CMS Spring Boot to a version later than 0.2.1 th
2022-07-21
Published