CVE-2020-8434
Summary
| CVE | CVE-2020-8434 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-05-19 13:15:00 UTC |
| Updated | 2023-11-07 03:26:00 UTC |
| Description | Jenzabar JICS (aka Internet Campus Solution) before 9.0.1 Patch 3, 9.1 before 9.1.2 Patch 2, and 9.2 before 9.2.2 Patch 8 has session cookies that are a deterministic function of the username. There is a hard-coded password to supply a PBKDF feeding into AES to encrypt a username and base64 encode it to a client-side cookie for persistent session authentication. By knowing the key and algorithm, an attacker can select any username, encrypt it, base64 encode it, and save it in their browser with the correct JICSLoginCookie cookie format to impersonate any real user in the JICS database without the need for authenticating (or verifying with MFA if implemented). |
Risk And Classification
Problem Types: CWE-384
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Jenzabar | Internet Campus Solution | All | All | All | All |
| Application | Jenzabar | Internet Campus Solution | All | All | All | All |
| Application | Jenzabar | Internet Campus Solution | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Higher Ed ERP Portal Vulnerability — Auth Bypass to Login Any Account | MISC | medium.com | Exploit, Third Party Advisory |
| Higher Ed ERP Portal Vulnerability — Auth Bypass to Login Any Account | by Michael Davis | Medium | medium.com | ||
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.