CVE-2022-34771 — MEDIUM (5.5)

Q: How severe is CVE-2022-34771?

CVE-2022-34771 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-34771?

Check the references section above for vendor advisories and patch information. Affected products include: Tabit Tabit.

Vulnerability Description

Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits behalf to anyone registered on the system - the API receives the parameters: phone number, and CustomMessage, We can use that API to craft malicious messages to any user of the system. In addition, the API probably has some kind of template injection potential. When entering {{OTP}} in the custom message field it is formatted into an OTP.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Tabit	Tabit	< 3.27.0

References

https://www.gov.il/en/departments/faq/cve_advisoriesThird Party Advisory
https://www.gov.il/en/departments/faq/cve_advisoriesThird Party Advisory

FAQ

What is CVE-2022-34771?

CVE-2022-34771 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits behalf to anyone registered on the system - the API receives the parameters: pho...

How severe is CVE-2022-34771?

CVE-2022-34771 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-34771?

Check the references section above for vendor advisories and patch information. Affected products include: Tabit Tabit.