CVE-2023-2881
MEDIUM6.7EPSS 0.01%Pimcore customers' list user password hash is disclosed
Published: 5/25/2023Modified: 2/16/2024
Description
### Impact The customer view exposes the hashed password along with other deails. An attacker is then able to enum password of a particular id, likewise we can replace id with other user , for example 1015, password hash can be disclosed which can be further cracked with hashcat ### Patches Update to version 3.3.10 or apply this patch manually https://github.com/pimcore/customer-data-framework/commit/d1d58c10313f080737dc1e71fab3beb12488a1e6.patch ### Workarounds Apply https://github.com/pimcore/customer-data-framework/commit/d1d58c10313f080737dc1e71fab3beb12488a1e6.patch manually. ### References https://huntr.dev/bounties/db6c32f4-742e-4262-8fd5-cefd0f133416/
Affected packages (1)
- Packagist/pimcore/customer-management-framework-bundlefrom 0, < 3.3.10
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.7 | CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H |
References (5)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-2881
- PATCHhttps://github.com/pimcore/customer-data-framework
- WEBhttps://github.com/pimcore/customer-data-framework/commit/d1d58c10313f080737dc1e71fab3beb12488a1e6
- WEBhttps://github.com/pimcore/customer-data-framework/security/advisories/GHSA-j65r-g7q2-f8v3
- WEBhttps://huntr.dev/bounties/db6c32f4-742e-4262-8fd5-cefd0f133416