Authentication bypass in Octobercms
CVE-2021-29487

7.4HIGH

Key Information:

Vendor

Octobercms

Status
October
Vendor
CVE Published:
26 August 2021

What is CVE-2021-29487?

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can exploit this vulnerability to bypass authentication and takeover of and user account on an October CMS server. The vulnerability is exploitable by unauthenticated users via a specially crafted request. This only affects frontend users and the attacker must obtain a Laravel secret key for cookie encryption and signing in order to exploit this vulnerability. The issue has been patched in Build 472 and v1.1.5.

Affected Version(s)

october >= 1.0.471, < 1.0.472 < 1.0.471, 1.0.472

october >= 1.1.1, < 1.1.5 < 1.1.1, 1.1.5

References

https://github.com/octobercms/library/commit/016a297b1bec...
x_refsource_MISC
https://github.com/octobercms/library/commit/5bd1a28140b8...
x_refsource_MISC
https://github.com/octobercms/october/security/advisories...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.