magento magento CVE-2020-15151 in Magento and Openmage Products
Published on August 20, 2020

Observable Timing Discrepancy in OpenMage LTS

product logo product logo
OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the `fromkey protection` in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. This issue is related to Adobe's CVE-2020-9690. It is patched in versions 19.4.6 and 20.0.2.

Github Repository NVD

Vulnerability Analysis

CVE-2020-15151 can be exploited with network access, requires user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.

Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
REQUIRED
Scope:
CHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
NONE

Weakness Type

What is a Side Channel Attack Vulnerability?

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not. Discrepancies can take many forms, and variations may be detectable in timing, control flow, communications such as replies or requests, or general behavior. These discrepancies can reveal information about the product's operation or internal state to an unauthorized actor. In some cases, discrepancies can be used by attackers to form a side channel.

CVE-2020-15151 has been classified to as a Side Channel Attack vulnerability or weakness.


Products Associated with CVE-2020-15151

stack.watch emails you whenever new vulnerabilities are published in Magento or Openmage Long Term Support. Just hit a watch button to start following.

Magento
 
Openmage Long Term Support
 

Affected Versions

OpenMage magento-lts:

Vulnerable Packages

The following package name and versions may be associated with CVE-2020-15151

Package Manager Vulnerable Package Versions Fixed In
composer openmage/magento-lts < 19.4.6 19.4.6
composer openmage/magento-lts >= 20.0.0, < 20.0.2 20.0.2

Exploit Probability

EPSS
0.09%
Percentile
25.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.