GHSA-hhf8-f5w9-g6vh

Source
https://github.com/advisories/GHSA-hhf8-f5w9-g6vh
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-hhf8-f5w9-g6vh/GHSA-hhf8-f5w9-g6vh.json
Aliases
  • CVE-2024-30173
Published
2024-04-02T18:21:49Z
Modified
2024-04-02T18:41:43.903805Z
Details

The authentication service of the extension does not verify the OpenID Connect authentication state from the user lookup chain. Instead, the authentication service authenticates every valid frontend user from the user lookup chain, where the frontend user field “tx_oidc” is not empty.

In scenarios, where either ext:felogin is active or where $GLOBALS['TYPO3_CONF_VARS'][‘FE’][‘checkFeUserPid’] is disabled, an attacker can login to OpenID Connect frontend user accounts by providing a valid username and any password.

References

Affected packages

Packagist / causal/oidc

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
2.1.0

Affected versions

0.*

0.1.0
0.2.0
0.5.0

1.*

1.0.0
1.1.0
1.2.0

2.*

2.0.0