Ameeba Security Research

Defensive CVE and exploit intelligence

Ameeba Blog Search
TRENDING · 1 WEEK
Attack Vector
Vendor
Severity

CVE-2023-45893: Unauthenticated Access to Sensitive Customer Information via IDOR in Floorsight Customer Portal

Views: 259

Overview

This report focuses on a significant cybersecurity threat denoted as CVE-2023-45893 that affects Floorsight’s Customer Portal for Q3 2023. An indirect object reference (IDOR) vulnerability has been identified, which could allow unauthorized remote attackers to access sensitive customer information. This vulnerability poses a substantial risk to data privacy and security, potentially leading to system compromise or data leakage.

Vulnerability Summary

CVE ID: CVE-2023-45893
Severity: High (CVSS 7.5)
Attack Vector: Network
Privileges Required: None
User Interaction: None
Impact: Risk of System Compromise and Data Leakage

Affected Products

Ameeba Chat Icon A new way to communicate

Ameeba Chat is built on encrypted identity, not personal profiles.

Message, call, share files, and coordinate with identities kept separate.

  • • Encrypted identity
  • • Ameeba Chat authenticates access
  • • Aliases and categories
  • • End-to-end encrypted chat, calls, and files
  • • Secure notes for sensitive information

Private communication, rethought.

Product | Affected Versions

Floorsight Customer Portal | Q3 2023

How the Exploit Works

An attacker can exploit this vulnerability by crafting a malicious request to the Order and Invoice pages in the Floorsight Customer Portal, manipulating the references to access data they are not authorized to view. Since the system does not adequately verify users’ permissions, it allows an unauthenticated remote attacker to access sensitive customer information.

Conceptual Example Code

Here is a conceptual example of how a malicious HTTP request might be constructed:

GET /order/12345 HTTP/1.1
Host: vulnerable-portal.floorsight.com

This request attempts to access the order details of Order ID 12345 without proper authentication. If successful, the attacker could view sensitive information about the order, including customer details.

Mitigation Guidance

To mitigate this vulnerability, Floorsight has released a vendor patch that should be applied immediately. As a temporary solution, users can employ a Web Application Firewall (WAF) or Intrusion Detection System (IDS). However, it’s essential to note that these are temporary measures, and applying the vendor patch is ultimately the best way to secure your system against this vulnerability.

Want to discuss this further? Join the Ameeba Cybersecurity Group Chat.

Disclaimer:

The information and code presented in this article are provided for educational and defensive cybersecurity purposes only. Any conceptual or pseudocode examples are simplified representations intended to raise awareness and promote secure development and system configuration practices.

Do not use this information to attempt unauthorized access or exploit vulnerabilities on systems that you do not own or have explicit permission to test.

Ameeba and its authors do not endorse or condone malicious behavior and are not responsible for misuse of the content. Always follow ethical hacking guidelines, responsible disclosure practices, and local laws.

More posts

Ameeba Chat