fkie_nvd - fkie_cve-2013-0233

fkie_cve-2013-0233

Vulnerability from fkie_nvd

Published

2013-04-25 23:55

Modified

2025-04-11 00:51

Severity ?

Summary

Devise gem 2.2.x before 2.2.3, 2.1.x before 2.1.3, 2.0.x before 2.0.5, and 1.5.x before 1.5.4 for Ruby, when using certain databases, does not properly perform type conversion when performing database queries, which might allow remote attackers to cause incorrect results to be returned and bypass security checks via unknown vectors, as demonstrated by resetting passwords of arbitrary accounts.

References

URL	Tags
secalert@redhat.com	http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/	Vendor Advisory
secalert@redhat.com	http://lists.opensuse.org/opensuse-updates/2013-03/msg00000.html
secalert@redhat.com	http://www.metasploit.com/modules/auxiliary/admin/http/rails_devise_pass_reset	Exploit
secalert@redhat.com	http://www.openwall.com/lists/oss-security/2013/01/29/3
secalert@redhat.com	http://www.phenoelit.org/blog/archives/2013/02/05/mysql_madness_and_rails/index.html	Exploit
secalert@redhat.com	http://www.securityfocus.com/bid/57577
secalert@redhat.com	https://github.com/Snorby/snorby/issues/261
af854a3a-2127-422b-91ae-364da2661108	http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2013-03/msg00000.html
af854a3a-2127-422b-91ae-364da2661108	http://www.metasploit.com/modules/auxiliary/admin/http/rails_devise_pass_reset	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2013/01/29/3
af854a3a-2127-422b-91ae-364da2661108	http://www.phenoelit.org/blog/archives/2013/02/05/mysql_madness_and_rails/index.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/57577
af854a3a-2127-422b-91ae-364da2661108	https://github.com/Snorby/snorby/issues/261

Impacted products

Vendor	Product	Version
plataformatec	devise	1.5.0
plataformatec	devise	1.5.1
plataformatec	devise	1.5.2
plataformatec	devise	1.5.3
plataformatec	devise	2.0.0
plataformatec	devise	2.0.1
plataformatec	devise	2.0.2
plataformatec	devise	2.0.3
plataformatec	devise	2.0.4
plataformatec	devise	2.1.0
plataformatec	devise	2.1.1
plataformatec	devise	2.1.2
plataformatec	devise	2.2.0
plataformatec	devise	2.2.1
plataformatec	devise	2.2.2
ruby-lang	ruby	*
opensuse	opensuse	12.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:1.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4F9C7C7-7723-43D4-91F6-6186D9C9BB10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:1.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "70B06452-931F-4975-84A3-36C1364C9C11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:1.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C259DDDF-BC40-46F5-BFFA-0FF2C93E62B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:1.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B7320C8-E9CB-4954-AE38-2EB81C1BE4E4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5682C78A-1FC7-41F8-873E-C61EC8CEA475",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B10284E-9813-4941-9D46-A2E6A7E4B3D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "43680C09-6447-4567-9693-09EABE846CDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3096DCF-E91B-4D83-BD15-28D42C12F3B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5C542B5-B5DE-462F-82F8-854837DA1B1D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3CD02E50-A2C8-43CC-A839-E5CA4A208EC2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "49F151AD-49A1-4B6C-BD13-EAC3C9329D56",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9785762C-15CA-4511-AE99-63063E1C4D91",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3646CD4-0C1D-43F7-9259-A6F6D6F8FE4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB24CBA3-26EA-4B6C-9EBF-018A8004BFE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:plataformatec:devise:2.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FB39D4E-850B-4D13-9B2B-F8DBE707F5E7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "264DD094-A8CD-465D-B279-C834DDA5F79C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D806A17E-B8F9-466D-807D-3F1E77603DC8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Devise gem 2.2.x before 2.2.3, 2.1.x before 2.1.3, 2.0.x before 2.0.5, and 1.5.x before 1.5.4 for Ruby, when using certain databases, does not properly perform type conversion when performing database queries, which might allow remote attackers to cause incorrect results to be returned and bypass security checks via unknown vectors, as demonstrated by resetting passwords of arbitrary accounts."
    },
    {
      "lang": "es",
      "value": "Devise v2.2.x antes de v2.2.3, v2.1.x antes de v2.1.3, v2.0.x antes de v2.0.5, v1.5.x antes de v1.5.4 de Ruby, al utilizar ciertas bases de datos, no funciona correctamente cuando se realiza la conversi\u00f3n de tipos consultas de base de datos, lo que podr\u00eda permitir a atacantes remotos provocar resultados incorrectos para ser devueltos y eludir los controles de seguridad a trav\u00e9s de vectores desconocidos, como lo demuestra restablecer las contrase\u00f1as de las cuentas arbitrarias."
    }
  ],
  "evaluatorImpact": "Per http://lists.opensuse.org/opensuse-updates/2013-03/msg00000.html\r\n\"Affected Products:\r\nopenSUSE 12.2\"",
  "id": "CVE-2013-0233",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-04-25T23:55:01.460",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-updates/2013-03/msg00000.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.metasploit.com/modules/auxiliary/admin/http/rails_devise_pass_reset"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openwall.com/lists/oss-security/2013/01/29/3"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.phenoelit.org/blog/archives/2013/02/05/mysql_madness_and_rails/index.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/57577"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://github.com/Snorby/snorby/issues/261"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-updates/2013-03/msg00000.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.metasploit.com/modules/auxiliary/admin/http/rails_devise_pass_reset"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2013/01/29/3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.phenoelit.org/blog/archives/2013/02/05/mysql_madness_and_rails/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/57577"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://github.com/Snorby/snorby/issues/261"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2013-0233 (GCVE-0-2013-0233)

Vulnerability from cvelistv5

Published

2013-04-25 23:00