CVE-2018-3822

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions X-Pack Security versions 6.2.0 through 6.2.2

Description The issue allows for a user impersonation attack via incorrect XML canonicalization and DOM traversal. An attacker might impersonate a legitimate user if the SAML Identity Provider allows self registration with arbitrary identifiers and the attacker can register an account with an identifier that shares a suffix with a legitimate account. Both conditions must be true to exploit this flaw.

Recommendations For versions 6.2.0 through 6.2.2, consider restricting the SAML Identity Provider to prevent self registration with arbitrary identifiers as a temporary workaround until a patch is available.

Fix

Improper Authentication

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-22

Related Identifiers

CVE-2018-3822

Affected Products

X-Pack Security

CVE-2018-3822

Weakness Enumeration

Related Identifiers

Affected Products

References · 3