CVE-2018-1000025

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-1000025

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1000025.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-1000025

Aliases

GHSA-4gjj-r7w8-42cq

Published

2018-02-09T23:29:00Z

Modified

2024-06-06T12:05:16.170349Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Jerome Gamez Firebase Admin SDK for PHP version from 3.2.0 to 3.8.0 contains a Incorrect Access Control vulnerability in src/Firebase/Auth/IdTokenVerifier.php does not verify for token signature that can result in JWT with any email address and user ID could be forged from an actual token, or from thin air. This attack appear to be exploitable via Attacker would only need to know email address of the victim on most cases.. This vulnerability appears to have been fixed in 3.8.1.

References

Affected packages

Git / github.com/kreait/firebase-php

Affected ranges

Type: GIT
Repo: https://github.com/kreait/firebase-php
Events: Introduced

e656499e19f30e003078495a6c166c9b074a82bd

Last affected

6808ed9c7b30777184ba18809e2520476fffaa46

Affected versions

3.*

3.2.0

3.2.1

3.3.0

3.3.1

3.3.2

3.3.3

3.4.0

3.4.1

3.4.2

3.5.0

3.6.0

3.7.0

3.7.1

3.8.0