CVE-2023-33243

HIGH

STARFACE - Auth Bypass

Title source: llm

Description

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become best practice to protect users' passwords in case of a database compromise, this is rendered ineffective when allowing to authenticate using the password hash.

Exploits (2)

exploitdb WORKING POC

by RedTeam Pentesting GmbH · textwebappsjsp

https://www.exploit-db.com/exploits/51503

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by RedTeamPentesting · poc

https://github.com/RedTeamPentesting/CVE-2023-33243

View Code ZIP pw:eip

References (2)

[Third Party Advisory] https://www.redteam-pentesting.de/en/advisories/-advisories-publicised-vulnerability-analyses

[Exploit, Third Party Advisory] https://www.redteam-pentesting.de/en/advisories/rt-sa-2022-004/-starface-authentication-with-password-hash-possible

Scores

CVSS v3 8.1

EPSS 0.1374

EPSS Percentile 94.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-916

Status published

Products (1)

starface/starface < 7.3.0.10

Published Jun 15, 2023

Tracked Since Feb 18, 2026