CVE-2021-42115
Missing HTTPOnly flag on sensitive cookie in TopEase
In short
A sensitive cookie in TopEase Platform lacks the HTTPOnly flag, allowing attackers to steal it through JavaScript and hijack user accounts. This vulnerability lets unauthenticated users gain authenticated access by injecting a stolen session cookie.
Technical detail
The session-independent static UID cookie is missing the HTTPOnly flag, enabling XSS attacks to exfiltrate the cookie via JavaScript. An unauthenticated attacker can steal and replay this cookie to escalate privileges to authenticated user status on affected TopEase Platform versions ≤7.1.27.
Summary generated and translated by AI from the official description.
Missing HTTPOnly flag in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 allows an unauthenticated remote attacker to escalate privileges from unauthenticated to authenticated user via stealing and injecting the session- independent and static cookie UID.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Affected products
Business-DNA Solutions GmbH · TopEaseWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →