CVE-2020-26223
Last modified
CVE-2020-26223 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. Spree is a complete open source e-commerce solution built with Ruby on Rails. In Spree from version 3.7 and before versions 3.7.13, 4.0.5, and 4.1.12, there is an authorization bypass vulnerability. EPSS estimates a 1.11% chance of exploitation in the next 30 days.
Description
Spree is a complete open source e-commerce solution built with Ruby on Rails. In Spree from version 3.7 and before versions 3.7.13, 4.0.5, and 4.1.12, there is an authorization bypass vulnerability. The perpetrator could query the API v2 Order Status endpoint with an empty string passed as an Order token. This is patched in versions 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version. Users of Spree < 3.7 are not affected.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Spreecommerce | Spree | >= 3.7.0, < 3.7.13 |
| Spreecommerce | Spree | >= 4.0.0, < 4.0.5 |
| Spreecommerce | Spree | >= 4.1.0, < 4.1.12 |
References
- https://github.com/spree/spree/pull/10573Exploit, Patch, Third Party Advisory
- https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmprThird Party Advisory
- https://github.com/spree/spree/pull/10573Exploit, Patch, Third Party Advisory
- https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmprThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-26223?
How severe is CVE-2020-26223?
How do I fix CVE-2020-26223?
Are you affected by CVE-2020-26223?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST