Vulnerability Details : CVE-2023-34246
Potential exploit
Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to version 5.6.6, Doorkeeper automatically processes authorization requests without user consent for public clients that have been previous approved. Public clients are inherently vulnerable to impersonation, their identity cannot be assured. This issue is fixed in version 5.6.6.
Products affected by CVE-2023-34246
- cpe:2.3:a:doorkeeper_project:doorkeeper:*:*:*:*:*:ruby:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-34246
0.12%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 47 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-34246
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
3.9
|
2.5
|
NIST | |
4.2
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N |
1.6
|
2.5
|
GitHub, Inc. |
CWE ids for CVE-2023-34246
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by:
- nvd@nist.gov (Secondary)
- security-advisories@github.com (Secondary)
References for CVE-2023-34246
-
https://lists.debian.org/debian-lts-announce/2023/07/msg00016.html
[SECURITY] [DLA 3494-1] ruby-doorkeeper security update
-
https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v5.6.6
Release v5.6.6 · doorkeeper-gem/doorkeeper · GitHubRelease Notes
-
https://github.com/doorkeeper-gem/doorkeeper/issues/1589
Non-confidential apps should always re-prompt for user consent · Issue #1589 · doorkeeper-gem/doorkeeper · GitHubExploit;Issue Tracking
-
https://github.com/doorkeeper-gem/doorkeeper/pull/1646
Block public clients automatic authorization skip by adam-h · Pull Request #1646 · doorkeeper-gem/doorkeeper · GitHubPatch
-
https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-7w2c-w47h-789w
Improper Authentication in doorkeeper · Advisory · doorkeeper-gem/doorkeeper · GitHubVendor Advisory
-
https://lists.debian.org/debian-lts-announce/2024/12/msg00010.html
[SECURITY] [DLA 3989-1] ruby-doorkeeper security update
-
https://www.rfc-editor.org/rfc/rfc8252#section-8.6
RFC 8252: OAuth 2.0 for Native AppsTechnical Description
Jump to