CVE-2018-25361
7
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N
Summary
Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application's database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Soroush | Soroush IM Desktop App | 0.17.0 | affected |
Weaknesses
- CWE-290: Authentication Bypass by Spoofing
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
References
- https://www.exploit-db.com/exploits/45171
- https://soroush-app.ir
- http://54.36.43.176/SoroushSetup0.17.0.exe
- https://www.vulncheck.com/advisories/soroush-im-desktop-app-authentication-bypass-via-database-injection
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.