CVE-2022-25151

ITarian - Session cookie not protected by HttpOnly flag

CVE

CVE-2022-25151

Title

ITarian - Session cookie not protected by HttpOnly flag

Case

DIVD-2021-00037

Credits

This issue was discovered by Wietse Boonstra & Hidde Smit of DIVD. ()

Affected products

Product	Affected	Unaffected	Unknown
ITarian ITarian SaaS platform / on-premise	>= any version to < 6.35.37347.20040 (custom)
ITarian ITarian SaaS platform / on-premise

CVSS

References

https://csirt.divd.nl/DIVD-2021-00037 ( x_refsource_CONFIRM, related )
https://csirt.divd.nl/CVE-2022-25151 ( x_refsource_CONFIRM, third-party-advisory )

Problem type(s)

CWE-614 Sensitive Cookie in HTTPS Session Without 'Secure' Attribute

Date published

23 Feb 2022 00:00 CET

Last modified

22 May 2024 20:18 UTC

Description

Within the Service Desk module of the ITarian platform (SAAS and on-premise), a remote attacker can obtain sensitive information, caused by the failure to set the HTTP Only flag. A remote attacker could exploit this vulnerability to gain access to the management interface by using this vulnerability in combination with a successful Cross-Site Scripting attack on a user.

JSON version.

DIVD CSIRT

CVE-2022-25151

ITarian - Session cookie not protected by HttpOnly flag

Description