Vulnerability CVE-2021-29012


Published: 2021-04-02

Description:
DMA Softlab Radius Manager 4.4.0 assigns the same session cookie to every admin session. The cookie is valid when the admin is logged in, but is invalid (temporarily) during times when the admin is logged out. In other words, the cookie is functionally equivalent to a static password, and thus provides permanent access if stolen.

Type:

CWE-565

(Reliance on Cookies without Validation and Integrity Checking)

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Dmasoftlab -> Dma radius manager 

 References:
https://github.com/1d8/publications/tree/main/cve-2021-29012
https://sourceforge.net/projects/radiusmanager/

Copyright 2021, cxsecurity.com

 

Back to Top