Main Vulnerability Database SB2019111505

SB2019111505 - Weak password recovery mechanism for forgotten password in Strapi

Published: November 15, 2019 Updated: November 21, 2024

Security Bulletin ID SB2019111505

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Weak Password Recovery Mechanism for Forgotten Password (CVE-ID: CVE-2019-18818)

The vulnerability allows a remote attacker to reset an admin's password.

The vulnerability exists due to the affected software mishandles password resets within "packages/strapi-admin/controllers/Auth.js" and "packages/strapi-plugin-users-permissions/controllers/Auth.js". A remote attacker can use the password reset routes to reset an admin's password without providing a valid password reset token.

Remediation

Install update from vendor's website.

References

https://github.com/strapi/strapi/pull/4443
https://github.com/strapi/strapi/releases/tag/v3.0.0-beta.17.5