#VU66181 Session Fixation in passport


Published: 2022-08-08

Vulnerability identifier: #VU66181

Vulnerability risk: Medium

CVSSv3.1: 4.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-25896

CWE-ID: CWE-384

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
passport
Other software / Other software solutions

Vendor: jaredhanson

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the session is regenerated instead of being closed when a user logs in or logs out. A remote attacker can gain access to the session.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

passport: 0.1.12 - 0.5.3

External links
http://github.com/jaredhanson/passport/pull/900
http://snyk.io/vuln/SNYK-JS-PASSPORT-2840631
http://github.com/jaredhanson/passport/commit/7e9b9cf4d7be02428e963fc729496a45baeea608

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Cloud Pak for AIOps
Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management
Multiple vulnerabilities in IBM Netcool Operations Insight
Multiple vulnerabilities in IBM Cloud Pak for Business Automation
Multiple vulnerabilities in IBM Security Verify Information Queue
Session fixation in IBM Maximo Application Suite
Multiple vulnerabilities in Red Hat Advanced Cluster Management 2.6
Session Fixation in strapi
Session Fixation in Jared Hanson Passport