383 – Insecurely generated token - OTP

Description

The OTP is generated client-side and sent to the server, so an attacker only needs to intercept the request to access the token and continue the application flow without needing access to the phone number used.

Impact

Make requests without having access to the telephone number used or even use a fake telephone number.

Recommendation

Generate OTPs and perform the corresponding validations always on the server side.

Threat

Anonymous attacker from the Internet.

Expected Remediation Time

60 minutes.

Score 4.0

Default score using CVSS 4.0. It may change depending on the context of the src.

Base 4.0

• Attack vector: N
• Attack complexity: L
• Attack Requirements: N
• Privileges required: N
• User interaction: N
• Confidentiality (VC): N
• Integrity (VI): L
• Availability (VA): N
• Confidentiality (SC): N
• Integrity (SI): N
• Availability (SA): N

Threat 4.0

• Exploit maturity: X

Requirements

• 228 - Authenticate using standard protocols

Fixes

• Csharp
• Dart
• Elixir
• Go
• Java
• Python
• Ruby
• Scala
• Typescript

Last updated

2024/02/20