← Back

CVE-2022-23064

nvd nist
Published: May 2, 2022Modified: Nov 21, 2024

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: vulnerabilitylab@mend.io (Secondary)

Description

In Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Header Injection. By sending a specially crafted host header in the reset password request, it is possible to send password reset links to users which once clicked lead to an attacker controlled server and thus leading to password reset token leak. This leads to account take over.

Affected (6)

Products: Snipeitapp: Snipe It
Snipeitapp
1 product
Snipe It
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Snipeitapp
Snipe It
From 3.0.0 to 5.3.7
Snipe It
Version 3.0.0 alpha1
Snipe It
Version 3.0.0 alpha2
Snipe It
Version 3.0.0 beta1
Snipe It
Version 3.0.0 beta2
Snipe It
Version 3.0.0 beta3

Related CWEs

CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

References (4)

Source: vulnerabilitylab@mend.io
PatchThird Party Advisory
Source: vulnerabilitylab@mend.io
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory

Timeline

No history available yet.