Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-7787— Improper Authentication

CVSS 8.2 · High EPSS 0.27% · P50
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-7787

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Improper Authentication
Source: NVD (National Vulnerability Database)
Vulnerability Description
This affects all versions of package react-adal. It is possible for a specially crafted JWT token and request URL can cause the nonce, session and refresh values to be incorrectly validated, causing the application to treat an attacker-generated JWT token as authentic. The logical defect is caused by how the nonce, session and refresh values are stored in the browser local storage or session storage. Each key is automatically appended by ||. When the received nonce and session keys are generated, the list of values is stored in the browser storage, separated by ||, with || always appended to the end of the list. Since || will always be the last 2 characters of the stored values, an empty string ("") will always be in the list of the valid values. Therefore, if an empty session parameter is provided in the callback URL, and a specially-crafted JWT token contains an nonce value of "" (empty string), then adal.js will consider the JWT token as authentic.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Salvoravida React-adal 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Salvoravida React-adal是Salvoravida个人开发者的一款基于JS语言的用于与Azure Active Directory交互的代码库。 react-adal 存在授权问题漏洞,该漏洞源于对于特殊设计的JWT令牌和请求URL,可能会导致nonce、会话和刷新值验证不正确,从而导致应用程序将攻击者可利用该漏洞生成的JWT令牌视为真实的。该逻辑缺陷是由nonce、会话和刷新值存储在浏览器本地存储或会话存储中的方式造成的。每个键被自动附加到||中。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-react-adal 0 ~ unspecified -

II. Public POCs for CVE-2020-7787

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-7787

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-12-09 · 27 CVEs total

CVE-2020-77767.1 HIGHCross-site Scripting (XSS)
CVE-2020-29661Linux kernel 资源管理错误漏洞
CVE-2020-29259SourceCodester Online Examination System 跨站脚本漏洞
CVE-2020-29258SourceCodester Online Examination System 跨站脚本漏洞
CVE-2020-29257SourceCodester Online Examination System 跨站脚本漏洞
CVE-2020-16600Artifex Software MuPDF 资源管理错误漏洞
CVE-2020-16599GNU Binutils 代码问题漏洞
CVE-2020-16593GNU Binutils 代码问题漏洞
CVE-2020-16592GNU Binutils 资源管理错误漏洞
CVE-2020-16591GNU Binutils 缓冲区错误漏洞
CVE-2020-16590GNU Binutils 资源管理错误漏洞
CVE-2020-25499TotoLink A3002RU 命令注入漏洞
CVE-2020-28086Git 授权问题漏洞
CVE-2020-29660Linux kernel 资源管理错误漏洞
CVE-2020-16587Industrial Light And Magic OpenEXR 缓冲区错误漏洞
CVE-2020-29659Flexense DupScout Enterprise 缓冲区错误漏洞
CVE-2020-25199Wecon Technologies LeviStudioU 缓冲区错误漏洞
CVE-2020-23520Imcat 代码问题漏洞
CVE-2020-29657JerryScript 缓冲区错误漏洞
CVE-2020-29655ASUS RT-AC88U 注入漏洞

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2020-7787

No comments yet

Leave a comment