CVE-2018-1322

EUVD-2018-0778
An administrator with user search entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can recover sensitive security values using the fiql and orderby parameters.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.9 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
apachesyncope
1.2.0 ≤
𝑥
< 1.2.11
apachesyncope
2.0.0 ≤
𝑥
< 2.0.8
apachesyncope
1.0.0
apachesyncope
1.0.3
apachesyncope
1.0.4
apachesyncope
1.0.5
apachesyncope
1.0.6
apachesyncope
1.0.7
apachesyncope
1.0.8
apachesyncope
1.0.9
apachesyncope
1.1.0
apachesyncope
1.1.1
apachesyncope
1.1.2
apachesyncope
1.1.3
apachesyncope
1.1.4
apachesyncope
1.1.5
apachesyncope
1.1.6
apachesyncope
1.1.7
apachesyncope
1.1.8
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://syncope.apache.org/security.html#CVE-2018-1322:_Information_disclosure_via_FIQL_and_ORDER_BY_sorting
http://www.securityfocus.com/bid/103507
https://www.exploit-db.com/exploits/45400/
http://syncope.apache.org/security.html#CVE-2018-1322:_Information_disclosure_via_FIQL_and_ORDER_BY_sorting
http://www.securityfocus.com/bid/103507
https://www.exploit-db.com/exploits/45400/