Miggo Logo
Miggo Vulnerability Database
GHSA-f3wp-xpv2-6vmg

GHSA-f3wp-xpv2-6vmg: silverstripe/framework password encryption salt not updated

N/A

CVSS Score

Basic Information

CVE ID
-
GHSA ID
GHSA-f3wp-xpv2-6vmg
EPSS Score
-
CWE
-
Published
5/27/2024
Updated
5/27/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
-
Package NameEcosystemVulnerable VersionsFirst Patched Version
silverstripe/frameworkcomposer>= 3.1.19-rc1, < 3.1.203.1.20
silverstripe/frameworkcomposer>= 3.2.4-rc1, < 3.2.53.2.5
silverstripe/frameworkcomposer>= 3.3.2-rc1, < 3.3.33.3.3
silverstripe/frameworkcomposer>= 3.4.0-rc1, < 3.4.13.4.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from the missing salt reset in the Member model's pre-write hook. The patch adds 'this->Salt = '';' in onBeforeWrite() when password changes are detected. This method handles password encryption logic, and the absence of salt reset in vulnerable versions meant user-specific encryption parameters weren't refreshed, leaving persistent authentication tokens valid despite password changes. The direct correlation between the fix location and vulnerability description confirms this as the vulnerable function.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W**n * us*r ***n**s t**ir p*sswor*, t** int*rn*l s*lt us** *or **s*in* t**ir p*sswor* is not up**t**. *lt*ou** t*is is not *onsi**r** * s**urity vuln*r**ility, t*is ****viour **s ***n improv** to *nsur* t** s*lt is r*s*t on ***n** o* p*sswor*.

Reasoning

T** vuln*r**ility st*ms *rom t** missin* s*lt r*s*t in t** M*m**r mo**l's pr*-writ* *ook. T** p*t** ***s 't*is->S*lt = '';' in `on***or*Writ*()` w**n p*sswor* ***n**s *r* **t**t**. T*is m*t*o* **n*l*s p*sswor* *n*ryption lo*i*, *n* t** **s*n** o* s*l