Privilege Escalation Vulnerability in LearnDash Plugin Affects Admin Account Security

CVE-2024-8349

7.2HIGH

Key Information

Vendor: Uncanny Owl
Status: Uncanny Groups For Learndash
Vendor: CVE Published:; 25 September 2024

Badges

👾 Exploit Exists🔴 Public PoC

Summary

The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.1.0.1. This is due to the plugin not properly restricting what users a group leader can edit. This makes it possible for authenticated attackers, with group leader-level access and above, to change admin account email addresses which can subsequently lead to admin account access.

Affected Version(s)

Uncanny Groups for LearnDash <= 6.1.0.1

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-8349-and-CVE-2024-8350
Created by karlemilnikka

Refferences

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://github.com/karlemilnikka/CVE-2024-8349-and-CVE-20...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 25, 2024
🔴
Public PoC available
Sep 17, 2024
👾
Exploit known to exist
Sep 17, 2024
Vulnerability Reserved
Aug 30, 2024

Collectors

NVD DatabaseMitre Database1 Proof of Concept(s)

Credit

Karl Emil Nikka