CVE-2018-1000025

Published: Feb 9, 2018Modified: Nov 21, 2024

8.1

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

Jerome Gamez Firebase Admin SDK for PHP version from 3.2.0 to 3.8.0 contains a Incorrect Access Control vulnerability in src/Firebase/Auth/IdTokenVerifier.php does not verify for token signature that can result in JWT with any email address and user ID could be forged from an actual token, or from thin air. This attack appear to be exploitable via Attacker would only need to know email address of the victim on most cases.. This vulnerability appears to have been fixed in 3.8.1.

Affected (1)

Products: Firebase Admin Sdk For Php Project: Firebase Admin Sdk For Php

Firebase Admin Sdk For Php Project

1 product

Firebase Admin Sdk For Php

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Firebase Admin Sdk For Php Project Firebase Admin Sdk For Php	From 3.2.0 to 3.8.0

Related CWEs

Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

References (4)

https://github.com/kreait/firebase-php/pull/151

Source: cve@mitre.org

Third Party Advisory

https://github.com/kreait/firebase-php/releases/tag/3.8.1

Source: cve@mitre.org

Release NotesThird Party Advisory

https://github.com/kreait/firebase-php/pull/151

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/kreait/firebase-php/releases/tag/3.8.1

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesThird Party Advisory

Timeline

No history available yet.