Password validation is suspected to have a timing attack vulnerability.

Low

wanghe-fit2cloud published GHSA-6m9h-2pr2-9j8f

Apr 18, 2024

Package

1Panel (Go)

Affected versions

v1.10.2-lts

Patched versions

v1.10.3-lts

Description

Summary

源码中密码校验处使用 != 符号，而不是hmac.Equal，这可能导致产生计时攻击漏洞，从而爆破密码。
建议使用 hmac.Equal 比对密码。

Details

https://github.com/1Panel-dev/1Panel/blob/dev/backend/app/service/auth.go#L81C5-L81C26

PoC

Impact

该产品的所有使用者。

Severity

Low

/ 10

CVSS v3 base metrics

Attack vector

Network

Attack complexity

High

Privileges required

High

User interaction

Required

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L