GHSA-fg52-xjfc-9rh8

Source

https://github.com/advisories/GHSA-fg52-xjfc-9rh8

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-fg52-xjfc-9rh8/GHSA-fg52-xjfc-9rh8.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-fg52-xjfc-9rh8

Aliases

CVE-2019-1020002

Published

2022-05-24T16:51:37Z

Modified

2024-05-19T02:24:04.681536Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

Pterodactyl vulnerable to 2FA Sniffing

Details

Pterodactyl version 0.7.13 and lower - 2FA Sniffing

Users who have enabled 2FA protections on their account can unintentionally have their account's existence sniffed by malicious users who enter random credentials into the login fields.

Impact

Users who have enabled 2FA protections on their account can unintentionally have their account's existence sniffed by malicious users who enter random credentials into the login fields.

A logical mistake was made when the original code was written that would wait to verify the user's password until they had provided 2FA credentials if it was enabled on their account. However, because of this you could enter a bad password for a known email and determine if the account exists if you got redirected to a 2FA page.

For more information

If you have any questions or comments about this advisory please react out on Discord or email dane@[project name].io.

Database specific

{
    "nvd_published_at": "2019-07-29T15:15:00Z",
    "github_reviewed_at": "2022-12-16T14:34:49Z",
    "severity": "HIGH",
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-203"
    ]
}

References

Affected packages

Packagist / pterodactyl/panel

Package

Name: pterodactyl/panel
Purl: pkg:composer/pterodactyl/panel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.14

Affected versions

v0.*

v0.1.0-beta

v0.1.1-beta

v0.1.2-beta

v0.2.0-beta

v0.3.0-beta

v0.4.0-beta

v0.4.1-beta

v0.5.0-rc.1

v0.5.0-rc.2

v0.5.0

v0.5.1

v0.5.2

v0.5.3

v0.5.4

v0.5.5

v0.5.6

v0.5.7

v0.6.0-beta.1

v0.6.0-beta.2

v0.6.0-beta.2.1

v0.6.0-rc.1

v0.6.0

v0.6.1

v0.6.2

v0.6.3

v0.6.4

v0.7.0-beta.1

v0.7.0-beta.2

v0.7.0-beta.3

v0.7.0-beta.4

v0.7.0-rc.1

v0.7.0-rc.2

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.7.6

v0.7.7

v0.7.8

v0.7.9

v0.7.10

v0.7.11

v0.7.12

v0.7.13

Database specific

{
    "last_known_affected_version_range": "<= 0.7.13"
}