CVE-2024-41800

Craft is a content management system (CMS). Craft CMS 5 allows reuse of TOTP tokens multiple times within the validity period. An attacker is able to re-submit a valid TOTP token to establish an authenticated session. This requires that the attacker has knowledge of the victim's credentials. This has been patched in Craft 5.2.3.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.8 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
GitHub_MCNA
4.8 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
CISA-ADPADP
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
VendorProductVersion
craftcmscraft_cms
5.0.1 ≤
𝑥
< 5.2.3
craftcmscraft_cms
5.0.0:beta1
craftcmscraft_cms
5.0.0:beta10
craftcmscraft_cms
5.0.0:beta11
craftcmscraft_cms
5.0.0:beta2
craftcmscraft_cms
5.0.0:beta3
craftcmscraft_cms
5.0.0:beta4
craftcmscraft_cms
5.0.0:beta5
craftcmscraft_cms
5.0.0:beta6
craftcmscraft_cms
5.0.0:beta7
craftcmscraft_cms
5.0.0:beta8
craftcmscraft_cms
5.0.0:beta9
craftcmscraft_cms
5.0.0:rc1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/craftcms/cms/commit/7c790fa5ad5a8cb8016cb6793ec3554c4c079e38
https://github.com/craftcms/cms/releases/tag/5.2.3
https://github.com/craftcms/cms/security/advisories/GHSA-wmx7-pw49-88jx
https://github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240617-01_CraftCMS_TOTP_Valid_After_Use
https://github.com/craftcms/cms/commit/7c790fa5ad5a8cb8016cb6793ec3554c4c079e38
https://github.com/craftcms/cms/releases/tag/5.2.3
https://github.com/craftcms/cms/security/advisories/GHSA-wmx7-pw49-88jx
https://github.com/sbaresearch/advisories/tree/public/2024/SBA-ADV-20240617-01_CraftCMS_TOTP_Valid_After_Use