CVE-2024-41800
MEDIUMCraftcms Craft Cms < 5.2.3 - Authentication Bypass
Title source: ruleDescription
Craft is a content management system (CMS). Craft CMS 5 allows reuse of TOTP tokens multiple times within the validity period. An attacker is able to re-submit a valid TOTP token to establish an authenticated session. This requires that the attacker has knowledge of the victim's credentials. This has been patched in Craft 5.2.3.
References (4)
Core 4
Core References
Patch x_refsource_misc
https://github.com/craftcms/cms/commit/7c790fa5ad5a8cb8016cb6793ec3554c4c079e38
Release Notes x_refsource_misc
https://github.com/craftcms/cms/releases/tag/5.2.3
Vendor Advisory x_refsource_confirm
https://github.com/craftcms/cms/security/advisories/GHSA-wmx7-pw49-88jx
Third Party Advisory x_refsource_misc
https://github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240617-01_CraftCMS_TOTP_Valid_After_Use
Scores
CVSS v3
4.8
EPSS
0.0026
EPSS Percentile
49.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-287
Status
published
Products (3)
craftcms/cms
5.0.0-beta.1 - 5.2.3Packagist
craftcms/craft_cms
5.0.0 beta1 (12 CPE variants)
craftcms/craft_cms
5.0.1 - 5.2.3
Published
Jul 25, 2024
Tracked Since
Feb 18, 2026