OpenCVE

An access control issue in IceCMS v3.4.7 and before allows attackers to arbitrarily modify users' information, including username and password, via a crafted POST request sent to the endpoint /User/ChangeUser/s in the ChangeUser function in UserController.java

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Thecosy	Icecms

Configuration 1 [-]

cpe:2.3:a:thecosy:icecms:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/Lunax0/LogLunax/blob/main/icecms/CVE-2024-46610.md
https://github.com/Thecosy/iceCMS?tab=readme-ov-file

History

Fri, 22 Nov 2024 12:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-284

Mon, 30 Sep 2024 17:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Thecosy Thecosy icecms
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:a:thecosy:icecms::::::::
Vendors & Products		Thecosy Thecosy icecms
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N'}`

Tue, 24 Sep 2024 19:45:00 +0000

Type	Values Removed	Values Added
Description		An access control issue in IceCMS v3.4.7 and before allows attackers to arbitrarily modify users' information, including username and password, via a crafted POST request sent to the endpoint /User/ChangeUser/s in the ChangeUser function in UserController.java
References		https://github.com/Lunax0/LogLunax/blob/main/icecms/CVE-2024-46610.md https://github.com/Thecosy/iceCMS?tab=readme-ov-file

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-09-24T00:00:00

Updated: 2024-09-24T20:12:52.083Z

Reserved: 2024-09-11T00:00:00

Link: CVE-2024-46610

Vulnrichment

No data.

NVD

Status : Modified

Published: 2024-09-25T01:15:44.497

Modified: 2024-11-21T09:38:48.150

Link: CVE-2024-46610

Redhat

No data.

{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2024-46610", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-09-24T20:12:52.083Z", "dateReserved": "2024-09-11T00:00:00", "datePublished": "2024-09-24T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-09-24T19:33:08.243555"}, "descriptions": [{"lang": "en", "value": "An access control issue in IceCMS v3.4.7 and before allows attackers to arbitrarily modify users' information, including username and password, via a crafted POST request sent to the endpoint /User/ChangeUser/s in the ChangeUser function in UserController.java"}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/Thecosy/iceCMS?tab=readme-ov-file"}, {"url": "https://github.com/Lunax0/LogLunax/blob/main/icecms/CVE-2024-46610.md"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "affected": [{"vendor": "thecosy", "product": "icecms", "cpes": ["cpe:2.3:a:thecosy:icecms:3.4.7:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "3.4.7", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-09-24T20:09:53.353572Z", "id": "CVE-2024-46610", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-24T20:12:52.083Z"}}]}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:thecosy:icecms:*:*:*:*:*:*:*:*", "matchCriteriaId": "AB1A5290-7D7C-4512-B880-39BFF56C2FB6", "versionEndIncluding": "3.4.7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An access control issue in IceCMS v3.4.7 and before allows attackers to arbitrarily modify users' information, including username and password, via a crafted POST request sent to the endpoint /User/ChangeUser/s in the ChangeUser function in UserController.java"}, {"lang": "es", "value": "Un problema de control de acceso en IceCMS v3.4.7 y anteriores permite a los atacantes modificar arbitrariamente la informaci\u00f3n de los usuarios, incluido el nombre de usuario y la contrase\u00f1a, a trav\u00e9s de una solicitud POST manipulada enviada al endpoint /User/ChangeUser/s en la funci\u00f3n ChangeUser en UserController.java"}], "id": "CVE-2024-46610", "lastModified": "2024-11-21T09:38:48.150", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 5.5, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-09-25T01:15:44.497", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/Lunax0/LogLunax/blob/main/icecms/CVE-2024-46610.md"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://github.com/Thecosy/iceCMS?tab=readme-ov-file"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}