CVE-2023-50708 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2023-50708

CVE-2023-50708

December 22, 2023

yii2-authclient is an extension that adds OpenID, OAuth, OAuth2 and OpenId Connect consumers for the Yii framework 2.0. In yii2-authclient prior to version 2.2.15, the Oauth1/2 `state` and OpenID Connect `nonce` is vulnerable for a `timing attack` since it is compared via regular string comparison (instead of `Yii::$app->getSecurity()->compareString()`). Version 2.2.15 contains a patch for the issue. No known workarounds are available.

Related Resources (7)

https://github.com/yiisoft/yii2-authclient/commit/dabddf2154ab7e7703740205a069202554089248

https://nvd.nist.gov/vuln/detail/CVE-2023-50708

https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OpenIdConnect.php#L420

https://github.com/yiisoft/yii2-authclient/security/advisories/GHSA-w8vh-p74j-x9xp

https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OAuth2.php#L121

https://github.com/yiisoft/yii2-authclient

https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54e69695ff/src/OAuth1.php#L158

Do you need more information?

CVSS v4

Base Score:

Attack Vector

NETWORK

Attack Complexity

HIGH

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

PASSIVE

Vulnerable System Confidentiality

NONE

Vulnerable System Integrity

HIGH

Vulnerable System Availability

NONE

Subsequent System Confidentiality

NONE

Subsequent System Integrity

HIGH

Subsequent System Availability

NONE

CVSS v3

Base Score:

6.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Weakness Type (CWE)

Observable Discrepancy

CWE-203

EPSS

Base Score:

0.16

Products

Solutions

Resources

Company

Compare

Developer Tools