PT-2019-15677 · Strapi · Strapi

Published

2019-11-07

·

Updated

2022-02-20

·

CVE-2019-18818

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions strapi versions prior to 3.0.0-beta.17.5
Description The issue is related to the mishandling of password resets within the strapi-admin and strapi-plugin-users-permissions packages. Specifically, the password reset routes allow an unauthenticated attacker to reset an admin's password without providing a valid password reset token, potentially leading to privilege escalation.
Recommendations For strapi versions prior to 3.0.0-beta.17.5, upgrade to version 3.0.0-beta.17.5 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-640

Related Identifiers

CVE-2019-18818
GHSA-6XC2-MJ39-Q599

Affected Products

Strapi