Vulnerability Description
Strapi is an open-source content management system. By combining two vulnerabilities (an `Open Redirect` and `session token sent as URL query parameter`) in @strapi/plugin-users-permissions before version 4.24.2, is its possible of an unauthenticated attacker to bypass authentication mechanisms and retrieve the 3rd party tokens. The attack requires user interaction (one click). Unauthenticated attackers can leverage two vulnerabilities to obtain an 3rd party token and the bypass authentication of Strapi apps. Users should upgrade @strapi/plugin-users-permissions to version 4.24.2 to receive a patch.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Strapi | Strapi | < 4.24.2 |
Related Weaknesses (CWE)
References
- https://github.com/strapi/strapi/security/advisories/GHSA-wrvh-rcmr-9qfcExploitVendor Advisory
- https://github.com/strapi/strapi/security/advisories/GHSA-wrvh-rcmr-9qfcExploitVendor Advisory
FAQ
What is CVE-2024-34065?
CVE-2024-34065 is a vulnerability with a CVSS score of 7.1 (HIGH). Strapi is an open-source content management system. By combining two vulnerabilities (an `Open Redirect` and `session token sent as URL query parameter`) in @strapi/plugin-users-permissions before ver...
How severe is CVE-2024-34065?
CVE-2024-34065 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-34065?
Check the references section above for vendor advisories and patch information. Affected products include: Strapi Strapi.