GHSA-j72f-h752-mx4w
Suggest an improvement- Source
- https://github.com/advisories/GHSA-j72f-h752-mx4w
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/11/GHSA-j72f-h752-mx4w/GHSA-j72f-h752-mx4w.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-j72f-h752-mx4w
- Aliases
- Published
- 2023-11-23T00:28:13Z
- Modified
- 2024-02-16T08:21:04.973586Z
- Severity
-
- 5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:N CVSS Calculator
- Summary
- Insertion of Sensitive Information into Log
- Details
-
Impact
If successful login attempts are recorded, the raw tokens are stored in the log table. If a malicious person somehow views the data in the log table, he or she can obtain a raw token, which can then be used to send a request with that user's authority.
When you (1) use the following authentiactors, - AccessTokens (
tokens) - JWT (jwt) - HmacSha256 (hmac)and you (2) log successful login attempts, the raw tokens are stored.
Patches
Upgrade to Shield v1.0.0-beta.8 or later.
Workarounds
Disable logging for successful login attempts by the configuration files.
- AccessTokens or HmacSha256
- Set
Config\AuthToken::$recordLoginAttempttoAuth::RECORD_LOGIN_ATTEMPT_FAILUREorAuth::RECORD_LOGIN_ATTEMPT_NONE
- Set
- JWT
- Set
Config\AuthJWT::$recordLoginAttempttoAuth::RECORD_LOGIN_ATTEMPT_FAILUREorAuth::RECORD_LOGIN_ATTEMPT_NONE
- Set
References
- https://codeigniter4.github.io/shield/getting_started/authenticators/
For more information
If you have any questions or comments about this advisory: * Open an issue or discussion in codeigniter4/shield * Email us at security@codeigniter.com
- AccessTokens or HmacSha256
- Database specific
{ "nvd_published_at": "2023-11-24T18:15:07Z", "cwe_ids": [ "CWE-532" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-11-23T00:28:13Z" }- References
-
- https://github.com/codeigniter4/shield/security/advisories/GHSA-j72f-h752-mx4w
- https://nvd.nist.gov/vuln/detail/CVE-2023-48708
- https://github.com/codeigniter4/shield/commit/7e84c3fb3411294f70890819bfe51781bb9dc8e4
- https://codeigniter4.github.io/shield/getting_started/authenticators
- https://github.com/codeigniter4/shield
Affected packages
Packagist / codeigniter4/shield
Package
- Name
- codeigniter4/shield
- Purl
- pkg:composer/codeigniter4/shield