CVE-2022-30935
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An authorization bypass in b2evolution allows remote, unauthenticated attackers to predict password reset tokens for any user through the use of a bad randomness function. This allows the attacker to get valid sessions for arbitrary users, and optionally reset their password. Tested and confirmed in a default installation of version 7.2.3. Earlier versions are affected, possibly earlier major versions as well.
Una omisión de autorización en b2evolution permite a atacantes remotos no autenticados predecir tokens de restablecimiento de contraseña para cualquier usuario mediante el uso de una función de aleatoriedad incorrecta. Esto permite al atacante obtener sesiones válidas para usuarios arbitrarios, y opcionalmente restablecer su contraseña. Probado y confirmado en una instalación por defecto de la versión 7.2.3. Las versiones anteriores están afectadas, posiblemente también las versiones mayores anteriores
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-05-16 CVE Reserved
- 2022-09-28 CVE Published
- 2024-04-20 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-330: Use of Insufficiently Random Values
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
https://github.com/b2evolution/b2evolution/issues/114 | Issue Tracking |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://b2evolution.net/downloads/7-2-5-stable | 2022-09-30 | |
https://github.com/b2evolution/b2evolution/blob/master/inc/_core/_misc.funcs.php#L5955 | 2022-09-30 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
B2evolution Search vendor "B2evolution" | B2evolution Search vendor "B2evolution" for product "B2evolution" | < 7.2.5 Search vendor "B2evolution" for product "B2evolution" and version " < 7.2.5" | - |
Affected
|