CVE-2023-3050

Vulnerability

TMT Lockcell versions before 15 contain a vulnerability in which the software relies on cookies for security decisions without performing validation or integrity checking [1]. This allows an attacker to manipulate cookie values to gain unauthorized access or elevated privileges within the application. The vulnerability is present in all releases prior to version 15.

Exploitation

An attacker can exploit this vulnerability remotely without authentication by crafting or modifying cookie values used in authentication or authorization decisions [1]. The attack requires network access to the Lockcell interface; no special privileges or user interaction is necessary. The attacker simply sends HTTP requests with manipulated cookie data to the affected system.

Impact

Successful exploitation leads to privilege abuse and authentication bypass [1]. An attacker can gain unauthorized administrative access or impersonate other users, potentially compromising the entire application. The impact is critical, as it allows complete control over the affected Lockcell instance.

Mitigation

The vendor has released Lockcell version 15 which addresses the issue by enforcing proper validation and integrity checks on cookies [1]. Users should upgrade to version 15 or later immediately. If upgrading is not possible, network-level access controls should be applied to restrict access to the Lockcell system to trusted hosts only, and additional monitoring for cookie manipulation attempts should be implemented.