Detections
Analytics
FreeBSD : Wagtail -- potential timing attack vulnerability (d5fead4f-8efa-11ea-a5c8-08002728f74c)
medium Nessus Plugin ID 136387
Language:
Synopsis
The remote FreeBSD host is missing one or more security-related updates.Description
Wagtail release notes :CVE-2020-11037: Potential timing attack on password-protected private pages
This release addresses a potential timing attack on pages or documents that have been protected with a shared password through Wagtail's 'Privacy' controls. This password check is performed through a character-by-character string comparison, and so an attacker who is able to measure the time taken by this check to a high degree of accuracy could potentially use timing differences to gain knowledge of the password. (This is understood to be feasible on a local network, but not on the public internet.)
Solution
Update the affected packages.See Also
https://docs.wagtail.io/en/latest/releases/2.8.2.html
Plugin Details
Severity: Medium
ID: 136387
File Name: freebsd_pkg_d5fead4f8efa11eaa5c808002728f74c.nasl
Version: 1.4
Type: local
Family: FreeBSD Local Security Checks
Published: 5/7/2020
Updated: 3/13/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Low
Base Score: 1.9
Temporal Score: 1.4
Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS Score Source: CVE-2020-11037
CVSS v3
Risk Factor: Medium
Base Score: 4.7
Temporal Score: 4.1
Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:py37-wagtail, p-cpe:/a:freebsd:freebsd:py36-wagtail, cpe:/o:freebsd:freebsd, p-cpe:/a:freebsd:freebsd:py38-wagtail, p-cpe:/a:freebsd:freebsd:py35-wagtail
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Exploit Ease: No known exploits are available
Patch Publication Date: 5/5/2020
Vulnerability Publication Date: 5/4/2020
Reference Information
CVE: CVE-2020-11037