#VU85605 Authentication bypass using an alternate path or channel in Global Site Selector


Published: 2024-01-19

Vulnerability identifier: #VU85605

Vulnerability risk: High

CVSSv3.1: 8.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-22212

CWE-ID: CWE-288

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Global Site Selector
Web applications / Modules and components for CMS

Vendor: Nextcloud

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to the authentication bypass in the password verification method. A remote attacker can authenticate as another user.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Global Site Selector: 1.1.0 - 2.4.4

External links
http://github.com/nextcloud/security-advisories/security/advisories/GHSA-vj5q-f63m-wp77
http://github.com/nextcloud/globalsiteselector/commit/ab5da57190d5bbc79079ce4109b6bcccccd893ee
http://hackerone.com/reports/2248689

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Authentication bypass using an alternate path or channel in Nextcloud Global Site Selector