← back
CVE-2018-25361

Soroush IM Desktop App 0.17.0 Authentication Bypass via Database Injection

CVSS 7 HIGHEPSS 0.1%CWE-290
Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application's database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N
Affected products
Soroush · Soroush IM Desktop App
public PoCs found1
cve_referencewww.exploit-db.com/exploits/45171unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://54.36.43.176/SoroushSetup0.17.0.exehttps://soroush-app.irhttps://www.exploit-db.com/exploits/45171https://www.vulncheck.com/advisories/soroush-im-desktop-app-authentication-bypass-via-database-injection