Lucene search

[email protected]NVD:CVE-2022-37783

HistoryDec 05, 2022 - 9:15 p.m.

CVE-2022-37783

2022-12-0521:15:10

CWE-522

[email protected]

web.nvd.nist.gov

craft cms

password hashes

anti-csrf-tokens

e-mail address

username

cross site request forgery

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

53.7%

JSON

All Craft CMS versions between 3.0.0 and 3.7.32 disclose password hashes of users who authenticate using their E-Mail address or username in Anti-CSRF-Tokens. Craft CMS uses a cookie called CRAFT_CSRF_TOKEN and a HTML hidden field called CRAFT_CSRF_TOKEN to avoid Cross Site Request Forgery attacks. The CRAFT_CSRF_TOKEN cookie discloses the password hash in without encoding it whereas the corresponding HTML hidden field discloses the users’ password hash in a masked manner, which can be decoded by using public functions of the YII framework.

Affected configurations

Nvd

Node

craftcmscraft_cmsRange3.0.0–3.7.32

VendorProductVersionCPE
craftcmscraft_cms*cpe:2.3:a:craftcms:craft_cms:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
craftcms	craft_cms	*	cpe:2.3:a:craftcms:craft_cms::::::::

References

www.openwall.com/lists/oss-security/2024/06/06/1

at-trustit.tuv.at/tuev-trust-it-cves/cve-disclosure-of-password-hashes/

cves.at/posts/cve-2022-37783/writeup/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

53.7%

JSON

Related for NVD:CVE-2022-37783

prion1 veracode1 osv2 vulnrichment1 cvelist1 github1 cve1