CVE-2020-35217

Summary

CVE	CVE-2020-35217
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-01-20 13:15:00 UTC
Updated	2021-02-02 15:50:00 UTC
Description	Vert.x-Web framework v4.0 milestone 1-4 does not perform a correct CSRF verification. Instead of comparing the CSRF token in the request with the CSRF token in the cookie, it compares the CSRF token in the cookie against a CSRF token that is stored in the session. An attacker does not even need to provide a CSRF token in the request because the framework does not consider it. The cookies are automatically sent by the browser and the verification will always succeed, leading to a successful CSRF attack.

Risk And Classification

Problem Types: CWE-352

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Eclipse	Vert.x-web	4.0.0	milestone1	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone2	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone3	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone4	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone1	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone2	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone3	All	All
Application	Eclipse	Vert.x-web	4.0.0	milestone4	All	All

References

Reference	Source	Link	Tags
Fixes CSRF when working along side sessions by pmlopes · Pull Request #1613 · vert-x3/vertx-web · GitHub	MISC	github.com	Patch, Third Party Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

982719 Java (maven) Security Update for io.vertx:vertx-web (GHSA-9q69-g5gc-9fgf)