icon

We found results for “

CVE-2021-25958

Date: August 30, 2021

Overview

In Apache OFBiz, versions v17.12.01 to v17.12.07 implement a try catch exception to handle errors at multiple locations but leaks out sensitive table info which may aid the attacker for further recon. A user can register with a very long password, but when he tries to login with it an exception occurs.

Details

Apache OFBiz implements a try catch exception to handle errors at multiple locations but leaks out sensitive table info which may aid the attacker for further recon. This exception occurs when a user tries to login to an ecommerce application with a very long password length.

PoC Details

Create a user with a very long password. Then go to https://host/ecommerce/control/login and login with the same user:pass you created in the last step. You will not be able to complete the login and an error message will leak out sensitive information.\n

Affected Environments

release17.12.01-release17.12.07

Prevention

Upgrade to version release17.12.08

Language: Java

Good to know:

icon

Generation of Error Message Containing Sensitive Information

CWE-209
icon

Upgrade Version

Upgrade to version release17.12.08

Learn More

Base Score:
Attack Vector (AV): Network
Attack Complexity (AC): Low
Privilegs Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): None
Availability (A): None
Base Score:
Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (AU): None
Confidentiality (C): Partial
Integrity (I): None
Availability (A): None
Additional information: