CVE-2023-26261
Published Mar 8, 2023
Last updated 2 years ago
Overview
- Description
- In UBIKA WAAP Gateway/Cloud through 6.10, a blind XPath injection leads to an authentication bypass by stealing the session of another connected user. The fixed versions are WAAP Gateway & Cloud 6.11.0 and 6.5.6-patch15.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Weaknesses
- nvd@nist.gov
- CWE-74
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ubikasec:waap_cloud:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A1C6B01B-3D44-4BB3-9010-771136293679",
"versionEndExcluding": "6.11.0"
},
{
"criteria": "cpe:2.3:a:ubikasec:waap_gateway:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E6E0F7D-E777-4FA1-9A4B-60F0A57ACABC",
"versionEndExcluding": "6.11.0"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ubikasec:waap_cloud:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59F28F7D-10C7-4ABE-A85B-A29871367AD8",
"versionEndExcluding": "6.5.6"
},
{
"criteria": "cpe:2.3:a:ubikasec:waap_cloud:6.5.6:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6510D7DC-E1BD-4B72-8B41-AE7B80146A95"
},
{
"criteria": "cpe:2.3:a:ubikasec:waap_gateway:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "796AFA72-D4A2-4D91-A01F-E8B1EE0CDF8A",
"versionEndExcluding": "6.5.6"
},
{
"criteria": "cpe:2.3:a:ubikasec:waap_gateway:6.5.6:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE2D213D-404D-4C9E-95CB-692EB88ADF27"
}
],
"operator": "OR"
}
]
}
]