CVE-2022-28601

{"id": "CVE-2022-28601", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2022-05-10T21:15:11.077", "references": [{"url": "https://github.com/FlaviuPopescu/CVE-2022-28601", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.lmsdoctor.com/simple-2-factor-authentication-plugin-for-moodle", "tags": ["Product"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-863"}]}], "descriptions": [{"lang": "en", "value": "A Two-Factor Authentication (2FA) bypass vulnerability in \"Simple 2FA Plugin for Moodle\" by LMS Doctor allows remote attackers to overwrite the phone number used for confirmation via the profile.php file. Therefore, allowing them to bypass the phone verification mechanism."}, {"lang": "es", "value": "Una vulnerabilidad de omisi\u00f3n de la autenticaci\u00f3n de dos factores (2FA) en \"Simple 2FA Plugin for Moodle\" de LMS Doctor permite a atacantes remotos sobrescribir el n\u00famero de tel\u00e9fono usado para la confirmaci\u00f3n por medio del archivo profile.php. Por lo tanto, les permite omitir el mecanismo de verificaci\u00f3n telef\u00f3nica"}], "lastModified": "2022-05-23T16:29:07.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:lmsdoctor:2_factor_authentication:-:*:*:*:*:moodle:*:*", "vulnerable": true, "matchCriteriaId": "4B4B7B68-E99A-40D4-8D4D-20C5E6E2EBBB"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}