CVE-2020-8184

Description

A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS Trends

Current EPSS score: 0.81%• Percentile: 75%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

• CWE-784•Reliance on Cookies without Validation and Integrity Checking in a Security Decision

  The product uses a protection mechanism that relies on the existence or values of a cookie, but it does not properly ensure that the cookie is valid for the associated user.

Affected Systems

• canonical•ubuntu_linux

  18.04

• debian•debian_linux

  9.0 | 10.0

• rack_project•rack

  < 2.1.4 | ≥ 2.2.0, < 2.2.3

References (5)

• https://hackerone.com/reports/895727
• https://groups.google.com/g/rubyonrails-security/c/OWtmozPH9Ak
• https://lists.debian.org/debian-lts-announce/2020/07/msg00006.html
• https://usn.ubuntu.com/4561-1/
• https://lists.debian.org/debian-lts-announce/2023/01/msg00038.html