CRITICAL🇵🇱 Wersja polska

CVE-2024-36042

CVSS 9.8v3.1pub. 2024-06-03upd. 2025-05-29

Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access.

🤖 AI Analysis
How it works

The authentication mechanism in AuthenticationServlet does not require the presence of a Password field in the submitted request. An attacker can send a crafted HTTP request to AuthenticationServlet, omitting the password field, which results in a session being granted without identity verification. In a typical exploitation scenario, omitting this field leads to login with superadministrator privileges, giving full control over the platform.

Impact

An attacker without any credentials can gain full access to the Silverpeas application, including access to all data, configuration, and administrative functions at the superadministrator privilege level. This results in complete loss of confidentiality, integrity, and availability of the system.

Mitigation & patch

Silverpeas should be immediately updated to version 6.3.5 or later. Patches and release tags are available in the project's GitHub repository (https://github.com/Silverpeas/Silverpeas-Core/tags). Until the update is applied, it is recommended to restrict network access to the Silverpeas instance only to trusted IP addresses at the firewall level.

Who is affected

Silverpeas in versions before 6.3.5

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Silverpeas

    APP
    Silverpeas
    < 6.3.5
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2024-42850CRITICAL9.8PL ✓ten sam produkt

Silverpeas – pomijanie wymagań złożoności hasła przy jego zmianie

CVE-2018-19586CRITICAL9.9ten sam produkt

Silverpeas 5.15 through 6.0.2 is affected by an authenticated Directory Traversal vulnerability that can be tr...

CVE-2024-48814HIGH7.5ten sam produkt

SQL Injection vulnerability in Silverpeas 6.4.1 allows a remote attacker to obtain sensitive information via t...

CVE-2023-47320HIGH8.1ten sam produkt

Silverpeas Core 6.3.1 is vulnerable to Incorrect Access Control. An attacker with low privileges is able to ex...

CVE-2023-47323HIGH7.5ten sam produkt

The notification/messaging feature of Silverpeas Core 6.3.1 does not enforce access control on the ID paramete...