PT-2023-26664 · Unknown · Opensis Classic

Florian Walter

Published

2023-11-20

Updated

2023-11-30

CVE-2023-38884

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions openSIS Classic version 9.0

Description The issue allows an unauthenticated remote attacker to access any student's files. This is achieved by visiting the "/assets/studentfiles/-" API endpoint, where studentId and filename are variables that can be manipulated to access different files.

Recommendations For openSIS Classic version 9.0, restrict access to the "/assets/studentfiles/-" API endpoint to prevent unauthorized file access. Consider implementing proper authentication and authorization mechanisms to ensure that only authorized users can access student files.

Exploit

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2023-38884

Affected Products

Opensis Classic

PT-2023-26664 · Unknown · Opensis Classic

CVE-2023-38884

Weakness Enumeration

Related Identifiers

Affected Products

References · 5