Main Vulnerability Database SB2023092039

SB2023092039 - Improper Authentication in JumpServer

Published: September 20, 2023 Updated: August 30, 2024

Security Bulletin ID SB2023092039

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Authentication (CVE-ID: CVE-2023-42442)

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to the session replays can be downloaded without authentication within the /api/v1/terminal/sessions/ API. A remote attacker can bypass authentication process and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://github.com/jumpserver/jumpserver/blob/v3.6.1/apps/terminal/api/session/session.py#L91
https://github.com/jumpserver/jumpserver/commit/0a58bba59cd275bab8e0ae58bf4b359fbc5eb74a
https://github.com/jumpserver/jumpserver/security/advisories/GHSA-633x-3f4f-v9rw