CVE-2017-12584 — HIGH (8.8)

Q: How severe is CVE-2017-12584?

CVE-2017-12584 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-12584?

Check the references section above for vendor advisories and patch information. Affected products include: Slims Senayan Library Management System.

Vulnerability Description

There is no CSRF mitigation in SLiMS 8 Akasia through 8.3.1. Also, an entire user profile (including the password) can be updated without sending the current password. This allows remote attackers to trick a user into changing to an attacker-controlled password, a complete account takeover, via the passwd1 and passwd2 fields in an admin/modules/system/app_user.php changecurrent=true operation.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Slims	Senayan Library Management System	<= 8.3.1

Related Weaknesses (CWE)

CWE-352

References

https://github.com/slims/slims8_akasia/issues/49ExploitThird Party Advisory
https://github.com/slims/slims8_akasia/issues/49ExploitThird Party Advisory

FAQ

What is CVE-2017-12584?

CVE-2017-12584 is a vulnerability with a CVSS score of 8.8 (HIGH). There is no CSRF mitigation in SLiMS 8 Akasia through 8.3.1. Also, an entire user profile (including the password) can be updated without sending the current password. This allows remote attackers to ...

How severe is CVE-2017-12584?

CVE-2017-12584 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-12584?

Check the references section above for vendor advisories and patch information. Affected products include: Slims Senayan Library Management System.