WuKongOpenSource WukongCRM Improper Authorization Vulnerability in PermissionServiceImpl
Vulnerability
A critical improper authorization vulnerability has been identified in WuKongOpenSource WukongCRM versions through 11.3.3. The issue resides in the URL Handler component, specifically within the PermissionServiceImpl.java file. The vulnerability allows remote exploitation by bypassing authentication and manipulating user permissions. Attackers can exploit this flaw to change user passwords, access sensitive data, and potentially disrupt system operations, leading to a complete leakage of information and unauthorized data modifications.
Impact
Exploitation of this vulnerability allows for unauthorized access to user permissions, manipulation of user passwords, and access to sensitive data, with potential disruptions to system operations.
Reproduction
To reproduce this vulnerability, send an unauthorized request to the 'adminUser/queryUserList' endpoint to retrieve user IDs. Once a user ID is obtained, send another unauthorized request to the 'adminUser/resetPassword' endpoint, including the user ID and a new password in the request body. This process bypasses authentication and allows for unauthorized password changes.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.