PT-2020-14327 · Spree Commerce · Spree

Damianlegawiec

Published

2020-10-20

Updated

2021-11-18

CVE-2020-15269

CVSS v3.1

7.4

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Spree versions prior to 3.7.11 Spree versions prior to 4.0.4 Spree versions prior to 4.1.11

Description The issue allows expired user tokens to be used for accessing Storefront API v2 endpoints. This could be exploited by a perpetrator who previously obtained an old expired user token.

Recommendations For versions prior to 3.7.11, upgrade to version 3.7.11. For versions prior to 4.0.4, upgrade to version 4.0.4. For versions prior to 4.1.11, upgrade to version 4.1.11. As a temporary workaround without upgrading, create a decorator file app/controllers/spree/api/v2/base controller decorator.rb with the specified contents to override the spree current user method in Spree::Api::V2::BaseController.

Exploit

Fix

Improper Authentication

Insufficient Session Expiration

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-613

Related Identifiers

CVE-2020-15269

GHSA-F8CM-364F-Q9QH

Affected Products

Spree

PT-2020-14327 · Spree Commerce · Spree

CVE-2020-15269

Weakness Enumeration

Related Identifiers

Affected Products

References · 7