PrestaShop CVE-2020-5250 vulnerability

Core

Score

7.6 High

Date publish

05-03-2020

Versiones afectadas

Versions from 1.7.0.0 up to but not including 1.7.6.4

Description

In PrestaShop before version 1.7.6.4, when a customer edits their address, they can freely change the id_address in the form, and thus steal someone else's address. It is the same with CustomerForm, you are able to change the id_customer and change all information of all accounts. The problem is patched in version 1.7.6.4.

References

https://github.com/PrestaShop/PrestaShop...

Patch Third Party Advisory github.com

https://github.com/PrestaShop/PrestaShop...

Third Party Advisory github.com

https://github.com/PrestaShop/PrestaShop...

Patch Third Party Advisory

https://github.com/PrestaShop/PrestaShop...

Third Party Advisory

Metrics

cvssMetricV31
source	security-advisories@github.com	nvd@nist.gov
type	Secondary	Primary
version	3.1	3.1
vectorString	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
baseScore	7.6	6.3
baseSeverity	HIGH	MEDIUM
attackVector	NETWORK	NETWORK
attackComplexity	LOW	LOW
privilegesRequired	LOW	LOW
userInteraction	REQUIRED	REQUIRED
scope	CHANGED	UNCHANGED
confidentialityImpact	HIGH	HIGH
integrityImpact	LOW	LOW
availabilityImpact	NONE	NONE
exploitabilityScore	2.3	2.1
impactScore	4.7	4.2
cvssMetricV2
source	nvd@nist.gov
type	Primary
version	2.0
vectorString	AV:N/AC:M/Au:S/C:P/I:P/A:N
baseScore	4.9
accessVector	NETWORK
accessComplexity	MEDIUM
authentication	SINGLE
confidentialityImpact	PARTIAL
integrityImpact	PARTIAL
availabilityImpact	NONE
baseSeverity	MEDIUM
exploitabilityScore	6.8
impactScore	4.9
acInsufInfo	False
obtainAllPrivilege	False
obtainUserPrivilege	False
obtainOtherPrivilege	False
userInteractionRequired	True