CVE-2024-42163 - OpenCVE

Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to take over the account of any user by predicting the token for the password reset link.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Fiware	Keyrock

Configuration 1 [-]

cpe:2.3:a:fiware:keyrock:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.ait.ac.at/themen/cyber-security/pentesting/security-advisories

History

Thu, 29 Aug 2024 15:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Fiware Fiware keyrock
CPEs		cpe:2.3:a:fiware:keyrock::::::::
Vendors & Products		Fiware Fiware keyrock

Mon, 12 Aug 2024 16:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 12 Aug 2024 11:30:00 +0000

Type	Values Removed	Values Added
Description		Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to take over the account of any user by predicting the token for the password reset link.
Title		Password Manipulation
Weaknesses		CWE-326
References		https://www.ait.ac.at/themen/cyber-security/pentesting/security-advisories
Metrics		cvssV3_1 `{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L'}`

MITRE

Status: PUBLISHED

Assigner: CyberDanube

Published: 2024-08-12T11:21:54.443Z

Updated: 2024-08-12T16:11:16.884Z

Reserved: 2024-07-29T20:49:58.924Z

Link: CVE-2024-42163

Vulnrichment

Updated: 2024-08-12T16:11:03.372Z

NVD

Status : Analyzed

Published: 2024-08-12T13:38:32.440

Modified: 2024-08-29T15:17:38.217

Link: CVE-2024-42163

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-42163", "assignerOrgId": "7d092a75-6bbd-48c6-a15a-0297458009bc", "state": "PUBLISHED", "assignerShortName": "CyberDanube", "dateReserved": "2024-07-29T20:49:58.924Z", "datePublished": "2024-08-12T11:21:54.443Z", "dateUpdated": "2024-08-12T16:11:16.884Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "FIWARE Keyrock", "vendor": "FIWARE", "versions": [{"lessThanOrEqual": "8.4", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Wolfgang Hotwagner (Austrian Institute of Technology)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to take over the account of any user by predicting the token for the password reset link."}], "value": "Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow\u00a0attackers to take over the account of any user by predicting the token for the password reset link."}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 8.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-326", "description": "CWE-326 Inadequate Encryption Strength", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d092a75-6bbd-48c6-a15a-0297458009bc", "shortName": "CyberDanube", "dateUpdated": "2024-08-12T11:21:54.443Z"}, "references": [{"url": "https://www.ait.ac.at/themen/cyber-security/pentesting/security-advisories"}], "source": {"discovery": "EXTERNAL"}, "title": "Password Manipulation", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-12T16:10:48.449249Z", "id": "CVE-2024-42163", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T16:11:16.884Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-42163", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-12T16:10:48.449249Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T16:11:03.372Z"}}], "cna": {"title": "Password Manipulation", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Wolfgang Hotwagner (Austrian Institute of Technology)"}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "FIWARE", "product": "FIWARE Keyrock", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "8.4"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.ait.ac.at/themen/cyber-security/pentesting/security-advisories"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow\u00a0attackers to take over the account of any user by predicting the token for the password reset link.", "supportingMedia": [{"type": "text/html", "value": "Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to take over the account of any user by predicting the token for the password reset link.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-326", "description": "CWE-326 Inadequate Encryption Strength"}]}], "providerMetadata": {"orgId": "7d092a75-6bbd-48c6-a15a-0297458009bc", "shortName": "CyberDanube", "dateUpdated": "2024-08-12T11:21:54.443Z"}}}, "cveMetadata": {"cveId": "CVE-2024-42163", "state": "PUBLISHED", "dateUpdated": "2024-08-12T16:11:16.884Z", "dateReserved": "2024-07-29T20:49:58.924Z", "assignerOrgId": "7d092a75-6bbd-48c6-a15a-0297458009bc", "datePublished": "2024-08-12T11:21:54.443Z", "assignerShortName": "CyberDanube"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fiware:keyrock:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D17A7A9-D306-4797-87E7-DCF904D86D27", "versionEndIncluding": "8.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow\u00a0attackers to take over the account of any user by predicting the token for the password reset link."}, {"lang": "es", "value": "Los valores insuficientemente aleatorios para generar el token de restablecimiento de contrase\u00f1a en FIWARE Keyrock <= 8.4 permiten a los atacantes hacerse cargo de la cuenta de cualquier usuario al predecir el token para el enlace de restablecimiento de contrase\u00f1a."}], "id": "CVE-2024-42163", "lastModified": "2024-08-29T15:17:38.217", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 8.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.5, "source": "office@cyberdanube.com", "type": "Secondary"}]}, "published": "2024-08-12T13:38:32.440", "references": [{"source": "office@cyberdanube.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.ait.ac.at/themen/cyber-security/pentesting/security-advisories"}], "sourceIdentifier": "office@cyberdanube.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-326"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-326"}], "source": "office@cyberdanube.com", "type": "Secondary"}]}