Lucene search

[email protected]CVE-2023-22893

HistoryApr 19, 2023 - 4:15 p.m.

CVE-2023-22893

2023-04-1916:15:07

CWE-287

[email protected]

web.nvd.nist.gov

strapi

4.5.5

oauth

aws cognito

remote attack

authentication bypass

nvd

cve-2023-22893

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.4%

JSON

Strapi through 4.5.5 does not verify the access or ID tokens issued during the OAuth flow when the AWS Cognito login provider is used for authentication. A remote attacker could forge an ID token that is signed using the ‘None’ type algorithm to bypass authentication and impersonate any user that use AWS Cognito for authentication.

Affected configurations

NVD

Node

strapistrapiRange3.0.0–4.6.0

CPENameOperatorVersion
strapi:strapistrapilt4.6.0

CPE	Name	Operator	Version
strapi:strapi	strapi	lt	4.6.0

References

github.com/strapi/strapi/releases

strapi.io/blog/security-disclosure-of-vulnerabilities-cve

www.ghostccamm.com/blog/multi_strapi_vulns/

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.4%

JSON

Related for CVE-2023-22893

github1 osv2 nvd1 veracode1 prion1 cvelist1 wallarmlab1