CVE-2013-4304

EUVD-2013-4198
The CentralAuth extension for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 caches a valid CentralAuthUser object in the centralauth_User cookie even when a user has not successfully logged in, which allows remote attackers to bypass authentication without a password.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
Affected Products (NVD)
VendorProductVersion
brion_vibbercentralauth_extension
-
mediawikimediawiki
1.19
mediawikimediawiki
1.19:beta_1
mediawikimediawiki
1.19:beta_2
mediawikimediawiki
1.19.0
mediawikimediawiki
1.19.1
mediawikimediawiki
1.19.2
mediawikimediawiki
1.19.3
mediawikimediawiki
1.19.4
mediawikimediawiki
1.19.5
mediawikimediawiki
1.19.6
mediawikimediawiki
1.19.7
mediawikimediawiki
1.20
mediawikimediawiki
1.20.1
mediawikimediawiki
1.20.2
mediawikimediawiki
1.20.3
mediawikimediawiki
1.20.4
mediawikimediawiki
1.20.5
mediawikimediawiki
1.20.6
mediawikimediawiki
1.21
mediawikimediawiki
1.21.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.html
http://osvdb.org/96910
http://seclists.org/oss-sec/2013/q3/553
http://secunia.com/advisories/54723
https://bugzilla.wikimedia.org/show_bug.cgi?id=52338
https://exchange.xforce.ibmcloud.com/vulnerabilities/86894
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-September/000133.html
http://osvdb.org/96910
http://seclists.org/oss-sec/2013/q3/553
http://secunia.com/advisories/54723
https://bugzilla.wikimedia.org/show_bug.cgi?id=52338
https://exchange.xforce.ibmcloud.com/vulnerabilities/86894