CVE-2021-45886

{"id": "CVE-2021-45886", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2022-03-13T02:15:07.123", "references": [{"url": "https://www.ponton.de/products/xpmessenger/", "tags": ["Product", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-080.txt", "tags": ["Exploit", "Release Notes", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.ponton.de/products/xpmessenger/", "tags": ["Product", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-080.txt", "tags": ["Exploit", "Release Notes", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in PONTON X/P Messenger before 3.11.2. Anti-CSRF tokens are globally valid, making the web application vulnerable to a weakened version of CSRF, where an arbitrary token of a low-privileged user (such as operator) can be used to confirm actions of higher-privileged ones (such as xpadmin)."}, {"lang": "es", "value": "Se ha detectado un problema en PONTON X/P Messenger versiones anteriores a 3.11.2. Los tokens anti-CSRF son globalmente v\u00e1lidos, lo que hace que la aplicaci\u00f3n web sea vulnerable a una versi\u00f3n debilitada de tipo CSRF, en la que un token arbitrario de un usuario con pocos privilegios (como el operador) puede ser usado para confirmar acciones de otros con m\u00e1s privilegios (como xpadmin)"}], "lastModified": "2024-11-21T06:33:11.773", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ponton:x\\/p_messenger:3.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA8FC305-4EE8-4132-8F22-9C0B13432233"}, {"criteria": "cpe:2.3:a:ponton:x\\/p_messenger:3.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3965533-AC63-4CE5-83BF-FAD31444BFD2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}