Authorization bypass through user-controlled key in Aimeos shop and e-commerce framework

#VU93484 Authorization bypass through user-controlled key in Aimeos shop and e-commerce framework

Published: 2024-06-28

Vulnerability identifier: #VU93484

Vulnerability risk: Medium

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: N/A

CWE-ID: CWE-639

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Aimeos shop and e-commerce framework
Web applications / Modules and components for CMS

Vendor: Aimeos

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the affected extension does not verify if a specified digital product identifier is authorized for download. A remote user can download digital products without completing payment, leading to an Insecure Direct Object Reference (IDOR) issue.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Aimeos shop and e-commerce framework: 22.10.1 - 24.4.1

External links
http://typo3.org/security/advisory/typo3-ext-sa-2024-005/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Aimeos shop and e-commerce framework extension for TYPO3