CVE-2017-17097

gps-server.net GPS Tracking Software (self hosted) 2.x has a password reset procedure that immediately resets passwords upon an unauthenticated request, and then sends e-mail with a predictable (date-based) password to the admin, which makes it easier for remote attackers to obtain access by predicting this new password. This is related to the use of gmdate for password creation in fn_connect.php.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
gps-servergps_tracking_software
2.1.1
gps-servergps_tracking_software
2.1.2
gps-servergps_tracking_software
2.1.3
gps-servergps_tracking_software
2.1.4
gps-servergps_tracking_software
2.1.5
gps-servergps_tracking_software
2.1.6
gps-servergps_tracking_software
2.1.7
gps-servergps_tracking_software
2.1.8
gps-servergps_tracking_software
2.1.9
gps-servergps_tracking_software
2.2
gps-servergps_tracking_software
2.2.1
gps-servergps_tracking_software
2.2.2
gps-servergps_tracking_software
2.2.5
gps-servergps_tracking_software
2.2.7
gps-servergps_tracking_software
2.3
gps-servergps_tracking_software
2.3.2
gps-servergps_tracking_software
2.3.5
gps-servergps_tracking_software
2.4
gps-servergps_tracking_software
2.4.5
gps-servergps_tracking_software
2.5
gps-servergps_tracking_software
2.5.5
gps-servergps_tracking_software
2.5.7
gps-servergps_tracking_software
2.5.8
gps-servergps_tracking_software
2.5.9
gps-servergps_tracking_software
2.6
gps-servergps_tracking_software
2.7
gps-servergps_tracking_software
2.8
gps-servergps_tracking_software
2.8.5
gps-servergps_tracking_software
2.9
gps-servergps_tracking_software
2.9.1
gps-servergps_tracking_software
2.9.2
gps-servergps_tracking_software
2.9.5
gps-servergps_tracking_software
2.9.6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://gist.github.com/pak0s/ea7a80c2614d9cd43cfb8230c65c9fec
https://s1.gps-server.net/changelog.txt
https://www.exploit-db.com/exploits/43431/
https://gist.github.com/pak0s/ea7a80c2614d9cd43cfb8230c65c9fec
https://s1.gps-server.net/changelog.txt
https://www.exploit-db.com/exploits/43431/