CVE-2020-24713 : Security Advisory and Response

Gophish through 0.10.1 does not invalidate the gophish cookie upon logout.

Understanding CVE-2020-24713

This CVE highlights a security issue in Gophish versions up to 0.10.1 where the gophish cookie is not properly invalidated upon logout.

What is CVE-2020-24713?

CVE-2020-24713 refers to a vulnerability in Gophish that allows the gophish cookie to remain active even after a user logs out, potentially leading to unauthorized access.

The Impact of CVE-2020-24713

This vulnerability could result in unauthorized users gaining access to sensitive information or performing malicious actions under the guise of a legitimate user.

Technical Details of CVE-2020-24713

Gophish through version 0.10.1 is affected by this vulnerability.

Vulnerability Description

The issue lies in the failure to invalidate the gophish cookie upon user logout, leaving it active and exploitable.

Affected Systems and Versions

Product: Gophish
Vendor: N/A
Versions affected: Up to 0.10.1

Exploitation Mechanism

Unauthorized users could exploit the active gophish cookie to gain access to the system or sensitive data even after a user has logged out.

Mitigation and Prevention

It is crucial to take immediate steps to address and prevent exploitation of this vulnerability.

Immediate Steps to Take

Users should manually clear browser cookies after logging out of Gophish to mitigate the risk of unauthorized access.
Implement additional authentication measures to enhance security.

Long-Term Security Practices

Regularly update Gophish to the latest version to ensure patches for known vulnerabilities are applied.
Conduct security audits and penetration testing to identify and address any security weaknesses.
Educate users on best practices for maintaining secure login sessions.

Patching and Updates

Check for security advisories and updates from Gophish to apply patches that address the cookie invalidation issue.