2021-01-02 04:56:15 +00:00
id : CVE-2020-26214
2020-11-07 10:47:02 +00:00
info :
2021-03-16 14:13:04 +00:00
name : Alerta Authentication Bypass
2020-11-07 10:47:02 +00:00
author : CasperGN
severity : critical
2021-03-16 14:12:25 +00:00
description : |
Alerta prior to version 8.1.0 is prone to Authentication Bypass when using LDAP as authorization provider and the LDAP server accepts Unauthenticated Bind requests.
2021-03-12 07:10:16 +00:00
reference : |
2021-03-11 10:26:36 +00:00
- https://github.com/advisories/GHSA-5hmm-x8q8-w5jh
- https://tools.ietf.org/html/rfc4513#section-5.1.2
- https://pypi.org/project/alerta-server/8.1.0/
2021-02-05 19:44:41 +00:00
tags : cve,cve2020,alerta
2020-11-07 10:47:02 +00:00
requests :
- method : GET
path :
- '{{BaseURL}}/api/config'
matchers-condition : and
matchers :
- type : status
status :
- 200
- type : regex
regex :
2021-03-15 17:03:53 +00:00
- 'name":\s*"Alerta ([0-7]\.[0-9]\.[0-9]|8\.0.[0-9])"'
2020-11-07 10:47:02 +00:00
condition : or
2020-11-07 11:37:29 +00:00
- type : regex
regex :
2021-03-15 17:03:53 +00:00
- 'provider":\s*"ldap"'
2020-11-07 11:37:29 +00:00
condition : or
2020-11-07 10:47:02 +00:00
extractors :
- type : regex
part : body
name : alerta-version
group : 1
regex :
2021-03-15 17:03:53 +00:00
- 'name":\s*"Alerta ([0-7]\.[0-9]\.[0-9]|8\.0.[0-9])"'