ExploitCVE-2024-51329
Improper Control of Generation of Code ('Code Injection') (CWE-94)
Summary
A Host header injection vulnerability in Agile-Board 1.0 allows attackers to obtain the password reset token via user interaction with a crafted password reset link.
Impact
This vulnerability could lead to unauthorized access to user accounts. Attackers can potentially hijack user sessions by obtaining password reset tokens, which could result in a breach of confidentiality and integrity of user data. The CVSS base score of 8.8 (High) indicates a significant risk, with high impacts on confidentiality, integrity, and availability. The attack vector is network-based, requires low attack complexity, and no privileges, but does require user interaction.
Exploitation
One proof-of-concept exploit is available on github.com. There is no evidence of proof of exploitation at the moment.
Patch
No specific patch information is provided. However, as the vulnerability is identified in Agile-Board version 1.0, it's likely that updating to a newer version (if available) might address this issue.
Mitigation
1. Update Agile-Board to the latest version if a patch is available. 2. Implement strict input validation and sanitization for the Host header. 3. Use secure, randomly generated tokens for password reset functionality. 4. Implement proper session management and token handling. 5. Educate users about the risks of interacting with unsolicited password reset links. 6. Consider implementing additional authentication factors for sensitive operations like password resets.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Timeline
NVD published the first details for CVE-2024-51329
Feedly found the first article mentioning CVE-2024-51329. See article
Feedly estimated the CVSS score as HIGH
EPSS Score was set to: 0.04% (Percentile: 10%)
A CVSS base score of 8.1 has been assigned.
A CVSS base score of 8.8 has been assigned.