Homepage
About Snyk

Access Restriction Bypass Affecting kreait/firebase-php package, versions >=3.2.0, <3.8.1

0.0
high

Snyk CVSS

    Attack Complexity High
    Confidentiality High
    Integrity High
    Availability High

    Threat Intelligence

    EPSS 0.25% (65th percentile)
Expand this section
NVD
8.1 high

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk ID SNYK-PHP-KREAITFIREBASEPHP-72122
  • published 16 Apr 2018
  • disclosed 16 Jan 2018
  • credit Unknown
Report a new vulnerability Found a mistake?

Introduced: 16 Jan 2018

CVE-2018-1000025 Open this link in a new tab
CWE-284 Open this link in a new tab

How to fix?

Upgrade kreait/firebase-php to version 3.8.1 or higher.

Overview

kreait/firebase-php is a Firebase Admin SDK.

Affected versions of this package are vulnerable to Access Restriction Bypass in the src/Firebase/Auth/IdTokenVerifier.php method. It does not verify for token signature and can result in JWT with any email address and user ID could be forged from an actual token, or from thin air.