What is CVE-2020-5300?

CVE-2020-5300 is a medium-severity vulnerability in Ory Hydra, classified under Authentication Bypass by Capture-replay. CVSS score: 5.8/10. Published 2020-04-06.

How severe is CVE-2020-5300?

Medium severity. CVSS v3 base score is 5.8 out of 10.

Vulnerability in Ory Hydra

CVE-2020-5300

In Hydra (an OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go), before version 1.4.0+oryOS.17, when using client authentication method 'private_key_jwt' [1], OpenId specification says the following about assertion…

EPSS: 0.002 (41.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.8 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N.

Affected products

Ory Hydra — versions < 1.4.0+oryOS.17

Weakness classification (CWE)

CWE-294 — Authentication Bypass by Capture-replay

References

github.com/ory/hydra/security/advisories/GHSA-3p3g-vpw6-4w66 (x_refsource_CONFIRM)
github.com/ory/hydra/commit/700d17d3b7d507de1b1d459a7261d6fb2571ebe3 (x_refsource_MISC)
github.com/ory/hydra/releases/tag/v1.4.0 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-5300?: CVE-2020-5300 is a medium-severity vulnerability in Ory Hydra, classified under Authentication Bypass by Capture-replay. CVSS score: 5.8/10. Published 2020-04-06.
How severe is CVE-2020-5300?: Medium severity. CVSS v3 base score is 5.8 out of 10.