Session Cookie Vulnerability in MediaWiki CentralNotice Extension
CVE-2013-4572

7.5HIGH

Key Information:

Vendor
Wikimedia Foundation
Status
Mediawiki
Vendor
CVE Published:
6 February 2020

Summary

The MediaWiki CentralNotice extension prior to specific versions improperly sets the Cache-Control header, leading to caching of session cookies when a user account is auto-created. This misconfiguration allows remote attackers to exploit the vulnerability by authenticating as the newly created user without appropriate authorization, posing a significant security risk.

Affected Version(s)

MediaWiki before 1.19.9

MediaWiki 1.20.x before 1.20.8

MediaWiki 1.21.x before 1.21.3

References

https://bugzilla.wikimedia.org/show_bug.cgi?id=53032
x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce...
x_refsource_MISC
http://lists.fedoraproject.org/pipermail/package-announce...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.