Main Vulnerability Database SB2024110415

SB2024110415 - Missing encryption of sensitive data in LedgerSMB

Published: November 4, 2024

Security Bulletin ID SB2024110415

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Missing Encryption of Sensitive Data (CVE-ID: CVE-2021-3882)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to LedgerSMB does not set the 'Secure' attribute on the session authorization cookie when the client uses HTTPS and the LedgerSMB server is behind a reverse proxy. A remote attacker can trick a user into using an unencrypted connection (HTTP) to obtain the authentication data by capturing network traffic.

Remediation

Install update from vendor's website.

References

https://huntr.dev/bounties/7061d97a-98a5-495a-8ba0-3a4c66091e9d
https://github.com/ledgersmb/ledgersmb/commit/c242f5a2abf4b99b0da205473cbba034f306bfe2
https://ledgersmb.org/cve-2021-3882-sensitive-non-secure-cookie