Vulnerability Description
Defective request context handling in Self Service in LinOTP 3.x before 3.2.5 allows remote unauthenticated attackers to escalate privileges, thereby allowing them to act as and with the permissions of another user. Attackers must generate repeated API requests to trigger a race condition with concurrent user activity in the self-service portal.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linotp | Linotp | >= 3.0.0, <= 3.2.4 |
| Linotp | Virtual Appliance | >= 3.0.0, <= 3.2.4 |
Related Weaknesses (CWE)
References
- https://linotp.org/CVE-2023-49706.txtVendor Advisory
- https://linotp.org/security-update-linotp3-selfservice.htmlVendor Advisory
- https://www.linotp.org/news.htmlVendor Advisory
- https://linotp.org/CVE-2023-49706.txtVendor Advisory
- https://linotp.org/security-update-linotp3-selfservice.htmlVendor Advisory
- https://www.linotp.org/news.htmlVendor Advisory
FAQ
What is CVE-2023-49706?
CVE-2023-49706 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Defective request context handling in Self Service in LinOTP 3.x before 3.2.5 allows remote unauthenticated attackers to escalate privileges, thereby allowing them to act as and with the permissions o...
How severe is CVE-2023-49706?
CVE-2023-49706 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-49706?
Check the references section above for vendor advisories and patch information. Affected products include: Linotp Linotp, Linotp Virtual Appliance.