CVE-2020-15235

In RACTF before commit f3dc89b, unauthenticated users are able to get the value of sensitive config keys that would normally be hidden to everyone except admins. All versions after commit f3dc89b9f6ab1544a289b3efc06699b13d63e0bd(3/10/20) are patched.

CVSS v3 5.9 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd	Patch Vendor Advisory
https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm	Vendor Advisory
https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd	Patch Vendor Advisory
https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:ractf:core:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:05

Type	Values Removed	Values Added
References	~~() https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd - Patch, Vendor Advisory~~	() https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd - Patch, Vendor Advisory
References	~~() https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm - Vendor Advisory~~	() https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm - Vendor Advisory
CVSS	v2 : ~~5.0~~ v3 : ~~7.5~~	v2 : 5.0 v3 : 5.9

Information

Published : 2020-10-05 16:15

Updated : 2024-11-21 05:05

NVD link : CVE-2020-15235

Mitre link : CVE-2020-15235

CVE.ORG link : CVE-2020-15235

JSON object : View

Products Affected

ractf

core

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2020-15235", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-10-05T16:15:12.237", "references": [{"url": "https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd", "tags": ["Patch", "Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/ractf/core/commit/f3dc89b9f6ab1544a289b3efc06699b13d63e0bd", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/ractf/core/security/advisories/GHSA-ph67-c355-52vm", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "In RACTF before commit f3dc89b, unauthenticated users are able to get the value of sensitive config keys that would normally be hidden to everyone except admins. All versions after commit f3dc89b9f6ab1544a289b3efc06699b13d63e0bd(3/10/20) are patched."}, {"lang": "es", "value": "En RACTF versiones anteriores al commit f3dc89b, los usuarios no autenticados pueden ser capaces de obtener el valor de las claves de configuraci\u00f3n confidenciales que normalmente estar\u00edan ocultas para todos excepto para los administradores. Todas las versiones posteriores a la confirmaci\u00f3n f3dc89b9f6ab1544a289b3efc06699b13d63e0bd (10/3/20) est\u00e1n parcheadas"}], "lastModified": "2024-11-21T05:05:09.330", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ractf:core:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89D2540B-5B14-4984-B6F1-D43546474CEA", "versionEndIncluding": "41edf92"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}