CVE-2023-30803
Sangfor Next-Gen Application Firewall Authentication Bypass
In short
The Sangfor Next-Gen Application Firewall contains a critical flaw that allows remote attackers to completely bypass authentication by using a specially crafted HTTP header, gaining unauthorized access to administrative features without needing valid credentials.
Technical detail
CWE-290: Improper Authentication; attackers exploit improper header validation in the Y-forwarded-for mechanism to bypass authentication controls and access administrative functionality remotely without credentials. Requires only network access to affected NGAF 8.0.17 instances.
Summary generated and translated by AI from the official description.
The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for header.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Sangfor · Net-Gen Application Firewallpublic PoCs found — 1
cve_referencelabs.watchtowr.com/yet-more-unauth-remote-command-execution-vulns-in-firewalls-sangfor-edition/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →