CVE-2017-18076
Description
In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value is improperly protected because POST (in addition to GET) parameters are stored in the session and become available in the environment of the callback phase.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.439
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-18076 are fixed in Ruby-omniauth 1.3.2 | Windows |
| ruby-omniauth security update(DSA-4109-1) ruby-omniauth_1.2.1-1+deb8u1_all.deb | Linux |
| ruby-omniauth security update(DSA-4109-1) ruby-omniauth_1.3.1-1+deb9u1_all.deb | Linux |
| Vulnerabilities CVE-2017-18076 are fixed in Ruby-omniauth for Linux 1.3.2 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234