Search
Find a vulnerability
Search criteria
2 vulnerabilities found for Pow by danschultzer
CVE-2020-5205 (GCVE-0-2020-5205)
Vulnerability from nvd – Published: 2020-01-09 02:05 – Updated: 2024-08-04 08:22
VLAI
EPSS
VEX
Title
Session fixation attack in Pow (Hex package)
Summary
In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn't have this vulnerability.
Severity
6.5 (Medium)
CWE
- CWE-384 - Session Fixation
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://github.com/danschultzer/pow/security/advi… | x_refsource_CONFIRM |
| https://github.com/danschultzer/pow/commit/578ffd… | x_refsource_MISC |
| https://github.com/danschultzer/pow/blob/master/C… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| danschultzer | Pow |
Affected:
< 1.0.16
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T08:22:08.880Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Pow",
"vendor": "danschultzer",
"versions": [
{
"status": "affected",
"version": "\u003c 1.0.16"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn\u0027t have this vulnerability."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-384",
"description": "CWE-384 Session Fixation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-09T02:05:13.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
],
"source": {
"advisory": "GHSA-v2wf-c3j6-wpvw",
"discovery": "UNKNOWN"
},
"title": "Session fixation attack in Pow (Hex package)",
"workarounds": [
{
"lang": "en",
"value": "Call Plug.Conn.configure_session(conn, renew: true) periodically and after privilege change. A custom authorization plug can be written where the create/3 method should return the conn only after Plug.Conn.configure_session/2 have been called on it."
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2020-5205",
"STATE": "PUBLIC",
"TITLE": "Session fixation attack in Pow (Hex package)"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Pow",
"version": {
"version_data": [
{
"version_value": "\u003c 1.0.16"
}
]
}
}
]
},
"vendor_name": "danschultzer"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn\u0027t have this vulnerability."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-384 Session Fixation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw",
"refsource": "CONFIRM",
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"name": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f",
"refsource": "MISC",
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"name": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07",
"refsource": "MISC",
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
]
},
"source": {
"advisory": "GHSA-v2wf-c3j6-wpvw",
"discovery": "UNKNOWN"
},
"work_around": [
{
"lang": "en",
"value": "Call Plug.Conn.configure_session(conn, renew: true) periodically and after privilege change. A custom authorization plug can be written where the create/3 method should return the conn only after Plug.Conn.configure_session/2 have been called on it."
}
]
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2020-5205",
"datePublished": "2020-01-09T02:05:14.000Z",
"dateReserved": "2020-01-02T00:00:00.000Z",
"dateUpdated": "2024-08-04T08:22:08.880Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-5205 (GCVE-0-2020-5205)
Vulnerability from cvelistv5 – Published: 2020-01-09 02:05 – Updated: 2024-08-04 08:22
VLAI
EPSS
VEX
Title
Session fixation attack in Pow (Hex package)
Summary
In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn't have this vulnerability.
Severity
6.5 (Medium)
CWE
- CWE-384 - Session Fixation
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://github.com/danschultzer/pow/security/advi… | x_refsource_CONFIRM |
| https://github.com/danschultzer/pow/commit/578ffd… | x_refsource_MISC |
| https://github.com/danschultzer/pow/blob/master/C… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| danschultzer | Pow |
Affected:
< 1.0.16
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T08:22:08.880Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Pow",
"vendor": "danschultzer",
"versions": [
{
"status": "affected",
"version": "\u003c 1.0.16"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn\u0027t have this vulnerability."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-384",
"description": "CWE-384 Session Fixation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-09T02:05:13.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
],
"source": {
"advisory": "GHSA-v2wf-c3j6-wpvw",
"discovery": "UNKNOWN"
},
"title": "Session fixation attack in Pow (Hex package)",
"workarounds": [
{
"lang": "en",
"value": "Call Plug.Conn.configure_session(conn, renew: true) periodically and after privilege change. A custom authorization plug can be written where the create/3 method should return the conn only after Plug.Conn.configure_session/2 have been called on it."
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2020-5205",
"STATE": "PUBLIC",
"TITLE": "Session fixation attack in Pow (Hex package)"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Pow",
"version": {
"version_data": [
{
"version_value": "\u003c 1.0.16"
}
]
}
}
]
},
"vendor_name": "danschultzer"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Pow (Hex package) before 1.0.16, the use of Plug.Session in Pow.Plug.Session is susceptible to session fixation attacks if a persistent session store is used for Plug.Session, such as Redis or a database. Cookie store, which is used in most Phoenix apps, doesn\u0027t have this vulnerability."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-384 Session Fixation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw",
"refsource": "CONFIRM",
"url": "https://github.com/danschultzer/pow/security/advisories/GHSA-v2wf-c3j6-wpvw"
},
{
"name": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f",
"refsource": "MISC",
"url": "https://github.com/danschultzer/pow/commit/578ffd3d8bb8e8a26077b644222186b108da474f"
},
{
"name": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07",
"refsource": "MISC",
"url": "https://github.com/danschultzer/pow/blob/master/CHANGELOG.md#v1016-2020-01-07"
}
]
},
"source": {
"advisory": "GHSA-v2wf-c3j6-wpvw",
"discovery": "UNKNOWN"
},
"work_around": [
{
"lang": "en",
"value": "Call Plug.Conn.configure_session(conn, renew: true) periodically and after privilege change. A custom authorization plug can be written where the create/3 method should return the conn only after Plug.Conn.configure_session/2 have been called on it."
}
]
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2020-5205",
"datePublished": "2020-01-09T02:05:14.000Z",
"dateReserved": "2020-01-02T00:00:00.000Z",
"dateUpdated": "2024-08-04T08:22:08.880Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}