TAAGSOLUTIONS MyTaag Privilege Escalation Vulnerability via 2FA Deactivation
Vulnerability
A vulnerability in TAAGSOLUTIONS GmbH MyTaag versions through 2024-11-24 allows remote attackers to escalate privileges by deactivating the second factor of authentication for user accounts. This is achieved through API requests to the /session endpoint, leaving accounts unprotected.
Impact
Exploitation of this vulnerability allows for unauthorized access to user accounts by disabling two-factor authentication, bypassing an important security measure.
Reproduction
To reproduce this vulnerability, log into a MyTaag account with two-factor authentication (2FA) enabled. After logging in, a session token is received, which can be used to deactivate 2FA by sending a PUT request to the MyTaag API with the session token and a value of 0 for the 2FA field. This action removes the 2FA requirement, allowing future logins without authentication.
Remediation
Users are advised to monitor for updates from TAAGSOLUTIONS GmbH regarding this vulnerability, as a fix is expected to be released soon.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.