CVE-2023-50708

low-risk
Published 2023-12-22

yii2-authclient is an extension that adds OpenID, OAuth, OAuth2 and OpenId Connect consumers for the Yii framework 2.0. In yii2-authclient prior to version 2.2.15, the Oauth1/2 `state` and OpenID Connect `nonce` is vulnerable for a `timing attack` since it is compared via regular string comparison (instead of `Yii::$app->getSecurity()->compareString()`). Version 2.2.15 contains a patch for the issue. No known workarounds are available.

Do I need to act?

-
0.16% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.1/10 Medium
NETWORK / HIGH complexity

Affected Products (1)

Yii2-Authclient

Affected Vendors

Yiiframework

References (10)

Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Issue Tracking https://github.com/yiisoft/yii2-authclient/commit/dabddf2154ab7e7703740205a06920...
Exploit https://github.com/yiisoft/yii2-authclient/security/advisories/GHSA-w8vh-p74j-x9...
Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Product https://github.com/yiisoft/yii2-authclient/blob/0d1c3880f4d79e20aa1d77c012650b54...
Issue Tracking https://github.com/yiisoft/yii2-authclient/commit/dabddf2154ab7e7703740205a06920...
Exploit https://github.com/yiisoft/yii2-authclient/security/advisories/GHSA-w8vh-p74j-x9...
25
/ 100
low-risk
Severity 19/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal