Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenOLAT: Authentication bypass via forged JWT in OIDC implicit flow
Vulnerability Description
OpenOlat is an open source web-based e-learning platform for teaching, learning, assessment and communication. From version 10.5.4 to before version 20.2.5, OpenOLAT's OpenID Connect implicit flow implementation does not verify JWT signatures. The JSONWebToken.parse() method silently discards the signature segment of the compact JWT (header.payload.signature), and the getAccessToken() methods in both OpenIdConnectApi and OpenIdConnectFullConfigurableApi only validate claim-level fields (issuer, audience, state, nonce) without any cryptographic signature verification against the Identity Provider's JWKS endpoint. This issue has been patched in version 20.2.5.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
认证机制不恰当
Vulnerability Title
OpenOLAT 数据伪造问题漏洞
Vulnerability Description
OpenOLAT是OpenOlat开源的一个基于网络的电子学习平台,用于教学、学习、评估和交流,一个 LMS,一个学习管理系统。 OpenOLAT 10.5.4至20.2.5之前版本存在数据伪造问题漏洞,该漏洞源于OpenID Connect隐式流实现未验证JWT签名,可能导致身份验证绕过。
CVSS Information
N/A
Vulnerability Type
N/A