← Advisories

COMMAX Biometric Access Control System 1.0.0 Cookie Reflected XSS

Medium
Advisory ID
ZSL-2021-5660
Release Date
15 August 2021
Vendor
COMMAX Co., Ltd. - https://www.commax.com
Affected Version
1.0.0
CVE
CVE-2021-47743
Tested On
nginx/1.14.0 (Ubuntu), MariaDB/10.3.15
Summary

Biometric access control system.

Description

The application is vulnerable to an unauthenticated reflected cross-site scripting (XSS) vulnerability. Input passed to the Cookies 'CMX_ADMIN_NM' and 'CMX_COMPLEX_NM' is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and JS code in a user's browser session in context of an affected site.

Proof of Concept
commax_xss.txtTXT
Disclosure Timeline
02.08.2021Vulnerability discovered.
03.08.2021Vendor contacted.
04.08.2021Vendor contacted.
05.08.2021No response from the vendor.
06.08.2021Vendor contacted.
14.08.2021No response from the vendor.
15.08.2021Public security advisory released.
Credits
Vulnerability discovered by Gjoko Krstic
References
[1]https://packetstormsecurity.com/files/163834
[2]https://exchange.xforce.ibmcloud.com/vulnerabilities/207578
[3]https://cxsecurity.com/issue/WLB-2021080063
[4]https://www.cve.org/CVERecord?id=CVE-2021-47743
Changelog
15.08.2021Initial release
23.08.2021Added reference [1], [2] and [3]
23.03.2026Added reference [4]