CVE-2024-7027

Authentication Bypass Using an Alternate Path or Channel (CWE-288)

Published: Jul 24, 2024 / Updated: 3mo ago

010
CVSS 7.3EPSS 0.04%High
CVE info copied to clipboard

Summary

The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. This is due to insufficient verification on the user being supplied during a QR code login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing Voucher Vendor user on the site, if they have access to the user id.

Impact

This vulnerability allows unauthenticated attackers to bypass authentication and log in as any existing Voucher Vendor user on the site, provided they have access to the user id. This could lead to unauthorized access to sensitive information, potential modification of data, and compromise of the affected WordPress sites using the vulnerable plugin. The CVSS v3.1 base score is 7.3 (High), with low impacts on confidentiality, integrity, and availability.

Exploitation

There is no evidence that a public proof-of-concept exists. There is no evidence of proof of exploitation at the moment.

Patch

A patch is available. The vulnerability affects versions up to and including 4.9.3 of the WooCommerce - PDF Vouchers plugin for WordPress. Users should upgrade to a version newer than 4.9.3 if available.

Mitigation

1. Update the WooCommerce - PDF Vouchers plugin to a version newer than 4.9.3 as soon as possible. 2. If immediate updating is not possible, consider temporarily disabling the plugin until it can be updated. 3. Implement strong user authentication practices and regularly audit user accounts. 4. Monitor for any suspicious login activities, especially those related to Voucher Vendor accounts. 5. Implement network segmentation and access controls to limit potential damage if a breach occurs.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Timeline

First Article

Feedly found the first article mentioning CVE-2024-7027. See article

Jul 24, 2024 at 2:50 AM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Jul 24, 2024 at 2:50 AM
CVE Assignment

NVD published the first details for CVE-2024-7027

Jul 24, 2024 at 3:15 AM
CVSS

A CVSS base score of 7.3 has been assigned.

Jul 24, 2024 at 3:20 AM / nvd
EPSS

EPSS Score was set to: 0.04% (Percentile: 9.4%)

Jul 24, 2024 at 9:39 AM
Trending

This CVE started to trend in security discussions

Jul 24, 2024 at 9:44 AM
Trending

This CVE stopped trending in security discussions

Jul 25, 2024 at 1:18 AM
Static CVE Timeline Graph

Affected Systems

Wordpress/wordpress
+null more

Links to Mitre Att&cks

T1083: File and Directory Discovery
+null more

Attack Patterns

CAPEC-127: Directory Indexing
+null more

News

Wordfence Intelligence Weekly WordPress Vulnerability Report (July 22, 2024 to July 28, 2024)
Last week, there were 68 vulnerabilities disclosed in 51 WordPress Plugins and 2 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 28 Vulnerability Researchers that contributed to WordPress Security last week. WordPress Plugins with Reported Vulnerabilities Last Week
Security Bulletin 31 Jul 2024 - Cyber Security Agency of Singapore
This vulnerability is fixed in 4.3.9. 9.9, https:// nvd . nist .gov/vuln/detail/ CVE -2024-37906. CVE -2024-41110, Moby is an open-source project created by ...
Unauthenticated Access Vulnerability in WooCommerce PDF Vouchers Plugin
WPweb - HIGH - CVE-2024-7027 The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. This is due to insufficient verification on the user being supplied during a QR code login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing Voucher Vendor user on the site, if they have access to the user id.
NA - CVE-2024-7027 - The WooCommerce - PDF Vouchers plugin for...
The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. This is due to insufficient verification on the user being...
CVE-2024-7027
The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.9.3. Gravedad 3.1 (CVSS 3.1 Base Score)
See 6 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:Low
Integrity:Low
Availability Impact:Low

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI