CVE-2019-8400

high-risk
Published 2019-02-17

ORY Hydra before v1.0.0-rc.3+oryOS.9 has Reflected XSS via the oauth2/fallbacks/error error_hint parameter.

Do I need to act?

-
0.32% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.1/10 Medium
NETWORK / LOW complexity

Affected Products (20)

Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra
Hydra

Affected Vendors

Ory

References (10)

Release Notes https://drive.google.com/file/d/1-25expUYVfK6vsiCmEabUCuelOP7aUDj/view?usp=drive...
Release Notes https://github.com/ory/hydra/blob/master/CHANGELOG.md#v100-rc3oryos9-2018-12-06
Patch https://github.com/ory/hydra/commit/9b5bbd48a72096930af08402c5e07fce7dd770f3
Exploit https://hackerone.com/reports/456333
Exploit https://www.youtube.com/watch?v=RIyZLeKEC8E
Release Notes https://drive.google.com/file/d/1-25expUYVfK6vsiCmEabUCuelOP7aUDj/view?usp=drive...
Release Notes https://github.com/ory/hydra/blob/master/CHANGELOG.md#v100-rc3oryos9-2018-12-06
Patch https://github.com/ory/hydra/commit/9b5bbd48a72096930af08402c5e07fce7dd770f3
Exploit https://hackerone.com/reports/456333
Exploit https://www.youtube.com/watch?v=RIyZLeKEC8E
56
/ 100
high-risk
Severity 23/34 · High
Exploitability 1/34 · Minimal
Exposure 32/34 · Critical