CVE-2024-41800 — Improper Authentication in Craft CMS

CWE-287 — Improper Authentication4 documents4 sources

Severity

7.5HIGHNVD

CNA4.8

EPSS

0.3%

top 50.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Craftcms Craft CMS Craftcms CMS

Timeline

PublishedJul 25

Description

Craft is a content management system (CMS). Craft CMS 5 allows reuse of TOTP tokens multiple times within the validity period. An attacker is able to re-submit a valid TOTP token to establish an authenticated session. This requires that the attacker has knowledge of the victim's credentials. This has been patched in Craft 5.2.3.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages3 packages

▶Packagistcraftcms/cms5.0.0-beta.1 — 5.2.3

▶NVDcraftcms/craft_cms5.0.1 — 5.2.3+1

▶CVEListV5craftcms/cms>= 5.0.0-beta.1, < 5.2.3

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Craft CMS Allows TOTP Token To Stay Valid After Use↗2024-07-25

▶

CVEList

Craft CMS Allows TOTP Token To Stay Valid After Use↗2024-07-25

▶

GHSA

Craft CMS Allows TOTP Token To Stay Valid After Use↗2024-07-25

▶