PT-2026-22583 · Simstudio · Simstudio
Publicado
2026-03-02
·
Atualizado
2026-03-07
·
CVE-2026-3432
CVSS v4.0
9.3
Crítica
| Vetor | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
SimStudio versions prior to 0.5.74
Description
The
/api/auth/oauth/token endpoint in SimStudio has a code path that circumvents authorization checks when provided with the credentialAccountUserId and providerId parameters. An unauthenticated attacker can obtain OAuth access tokens for any user by providing their user ID and a provider name, potentially compromising credentials to third-party services.Recommendations
Update SimStudio to version 0.5.74 or later. As a temporary workaround, restrict access to the
/api/auth/oauth/token endpoint.Correção
Missing Authorization
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Simstudio