#VU66181 Session Fixation in passport - CVE-2022-25896

Cybersecurity Help s.r.o.

Published: 2022-08-08

Vulnerability identifier: #VU66181

Vulnerability risk: Medium

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-25896

CWE-ID: CWE-384

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
passport
Other software / Other software solutions

Vendor: jaredhanson

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the session is regenerated instead of being closed when a user logs in or logs out. A remote attacker can gain access to the session.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

passport: 0.1.12 - 0.5.3

External links
https://github.com/jaredhanson/passport/pull/900
https://snyk.io/vuln/SNYK-JS-PASSPORT-2840631
https://github.com/jaredhanson/passport/commit/7e9b9cf4d7be02428e963fc729496a45baeea608

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Session fixation in IBM Cloud Pak for Data

Multiple vulnerabilities in IBM Cloud Pak for AIOps

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management

Multiple vulnerabilities in IBM Netcool Operations Insight

Multiple vulnerabilities in IBM Cloud Pak for Business Automation

Multiple vulnerabilities in IBM Security Verify Information Queue

Session fixation in IBM Maximo Application Suite

Multiple vulnerabilities in Red Hat Advanced Cluster Management 2.6

Session Fixation in strapi

Session Fixation in Jared Hanson Passport