CVE-2024-30173

Name of the Vulnerable Software and Affected Versions OpenID Connect Authentication extension for TYPO3 (affected versions not specified)

Description The issue concerns a security bypass in the authentication service of the OpenID Connect Authentication extension for TYPO3. The authentication service does not properly verify the OpenID Connect authentication state from the user lookup chain. Instead, it authenticates every valid frontend user from the user lookup chain where the frontend user field tx oidc is not empty. This can allow an attacker to login to OpenID Connect frontend user accounts by providing a valid username and any password, particularly in scenarios where either ext:felogin is active or where $GLOBALS['TYPO3 CONF VARS']['FE']['checkFeUserPid'] is disabled.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.