CVE-2018-19443

Published: Nov 22, 2018Modified: Nov 21, 2024

5.9

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

The client in Tryton 5.x before 5.0.1 tries to make a connection to the bus in cleartext instead of encrypted under certain circumstances in bus.py and jsonrpc.py. This connection attempt fails, but it contains in the header the current session of the user. This session could then be stolen by a man-in-the-middle.

Affected (1)

Products: Tryton: Tryton

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tryton Tryton	Version 5.0.0

Related CWEs

Session Fixation

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

References (4)

https://bugs.tryton.org/issue7792

Source: cve@mitre.org

Issue TrackingThird Party Advisory

https://discuss.tryton.org/t/security-release-for-issue7792/830

Source: cve@mitre.org

Vendor Advisory

https://bugs.tryton.org/issue7792

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingThird Party Advisory

https://discuss.tryton.org/t/security-release-for-issue7792/830

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.