CVE-2022-2921

Name of the Vulnerable Software and Affected Versions notrinoserp versions prior to v0.7

Description The issue results in exposure of private personal information to an unauthorized actor, leading to privilege escalation to a system administrator account. This allows an attacker to gain access to protected functionality such as creating or updating companies, installing or updating languages, installing or activating extensions and themes, and performing other permissive actions. The vulnerability can be exploited through the AP officers account, which has the authority to backup and restore the database, allowing access to the system administrator's password hash. The weak hash (MD5) of the password can be easily cracked, revealing the admin password.

Recommendations For versions prior to v0.7, update to version v0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the database backup and restore functionality to minimize the risk of exploitation. Additionally, restrict the use of the MD5 hash for password storage and consider using a stronger hashing algorithm.