Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS02Y3E1LThjajctZzU1OM4AAwgy

CodeIgniter4 Potential Session Handlers Vulnerability

Impact

When an application uses (1) multiple session cookies (e.g., one for user pages and one for admin pages) and (2) a session handler is set to DatabaseHandler, MemcachedHandler, or RedisHandler, then if an attacker gets one session cookie (e.g., one for user pages), they may be able to access pages that require another session cookie (e.g., for admin pages).

Patches

Upgrade to version 4.2.11 or later.

Workarounds

• Use only one session cookie.

References

• https://codeigniter4.github.io/userguide/libraries/sessions.html#session-drivers

For more information

If you have any questions or comments about this advisory:

• Open an issue in codeigniter4/CodeIgniter4
• Email us at SECURITY.md

Permalink: https://github.com/advisories/GHSA-6cq5-8cj7-g558
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02Y3E1LThjajctZzU1OM4AAwgy
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: almost 2 years ago
Updated: almost 2 years ago

CVSS Score: 8.6
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Identifiers: GHSA-6cq5-8cj7-g558, CVE-2022-46170
References:

• https://github.com/codeigniter4/CodeIgniter4/security/advisories/GHSA-6cq5-8cj7-g558
• https://github.com/codeigniter4/CodeIgniter4/commit/f9fb6574fbeb5a4aa63f7ea87296523e10db9328
• https://codeigniter4.github.io/userguide/libraries/sessions.html#session-drivers
• https://nvd.nist.gov/vuln/detail/CVE-2022-46170
• https://github.com/FriendsOfPHP/security-advisories/blob/master/codeigniter4/framework/CVE-2022-46170.yaml
• https://github.com/advisories/GHSA-6cq5-8cj7-g558

Repository: https://github.com/codeigniter4/CodeIgniter4
Blast Radius: 28.7

Affected Packages