CVE-2020-15233
Last modified
CVE-2020-15233 is a medium-severity vulnerability rated 4.8/10 on the CVSS scale. ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go. In Fosite from version 0.30.2 and before version 0.34.1, there is an issue in which an an attacker can override the registered redirect URL by performing an OAuth flow and requesting a redirect URL that is to the loopback adapter. EPSS estimates a 0.79% chance of exploitation in the next 30 days.
Description
ORY Fosite is a security first OAuth2 & OpenID Connect framework for Go. In Fosite from version 0.30.2 and before version 0.34.1, there is an issue in which an an attacker can override the registered redirect URL by performing an OAuth flow and requesting a redirect URL that is to the loopback adapter. Attackers can provide both custom URL query parameters to their loopback redirect URL, as well as actually overriding the host of the registered redirect URL. These attacks are only applicable in scenarios where the attacker has access over the loopback interface. This vulnerability has been patched in ORY Fosite v0.34.1.
Metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ory | Fosite | >= 0.30.2, < 0.34.1 |
References
- https://github.com/ory/fosite/commit/cdee51ebe721bfc8acca0fd0b86b030ca70867bfPatch, Third Party Advisory
- https://github.com/ory/fosite/security/advisories/GHSA-rfq3-w54c-f9q5Third Party Advisory
- https://github.com/ory/fosite/commit/cdee51ebe721bfc8acca0fd0b86b030ca70867bfPatch, Third Party Advisory
- https://github.com/ory/fosite/security/advisories/GHSA-rfq3-w54c-f9q5Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-15233?
How severe is CVE-2020-15233?
How do I fix CVE-2020-15233?
Are you affected by CVE-2020-15233?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST