CVE-2020-11027 Information
Share on:Description
In affected versions of WordPress a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user by a malicious party for successful execution. This has been patched in version 5.4.1 along with all the previously affected versions via a minor release (5.3.3 5.2.6 5.1.5 5.0.9 4.9.14 4.8.13 4.7.17 4.6.18 4.5.21 4.4.22 4.3.23 4.2.27 4.1.30 4.0.30 3.9.31 3.8.33 3.7.33).
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Reference
https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-ww7v-jg8c-q6jw https://lists.debian.org/debian-lts-announce/2020/05/msg00011.html https://wordpress.org/support/wordpress-version/version-5-4-1/security-updates https://www.debian.org/security/2020/dsa-4677
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
NONE
Base Severity
8.1