PT-2022-16846 · Sylius · Sylius

Lchrusciel

Published

2022-03-14

Updated

2022-03-22

CVE-2022-24743

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

Name of the Vulnerable Software and Affected Versions Sylius versions prior to 1.10.11 and 1.11.2

Description The reset password token was not set to null after the password was changed, allowing the same token to be used several times. This could result in a leak of the existing token and unauthorized password change.

Recommendations For versions prior to 1.10.11 and 1.11.2, update to version 1.10.11 or 1.11.2 to fix the issue. As a temporary workaround, overwrite the SyliusBundleApiBundleCommandHandlerResetPasswordHandler class with the provided code and register it in a container.

Exploit

Fix

Insufficient Session Expiration

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-613

Related Identifiers

CVE-2022-24743

GHSA-MF3V-F2QQ-PF9G

Affected Products

Sylius

PT-2022-16846 · Sylius · Sylius

CVE-2022-24743

Weakness Enumeration

Related Identifiers

Affected Products

References · 9