One Identity Safeguard for Privileged Passwords OTP Bypass Vulnerability

A vulnerability in One Identity Safeguard for Privileged Passwords version 7.5.1.20903 allows for bypassing the one-time password (OTP) requirement on the multi-factor authentication (MFA) page. This is achieved through manipulation of the response from the server, enabling attackers to access the Privileged Access Management (PAM) portal without a valid OTP. As a result, they can gain control over any account of their choosing.

Impact

Exploitation of this vulnerability allows unauthorized access to the PAM portal, bypassing MFA requirements and enabling control over user accounts.

Reproduction

To reproduce this vulnerability, log in with valid credentials and proceed to the OTP verification step. Intercept and copy the backend response after successfully entering the correct OTP. Then, log out and attempt to log in again, this time entering an incorrect OTP. Intercept the request and replace the response with the previously captured one from the successful login. This will bypass the OTP verification and grant access without a new OTP.