CVE-2022-45173 : Security Advisory and Response

An issue was discovered in LIVEBOX Collaboration vDesk through v018 that could lead to a Bypass of Two-Factor Authentication.

Understanding CVE-2022-45173

This CVE identifies a vulnerability in LIVEBOX Collaboration vDesk through v018 that could allow an attacker to bypass Two-Factor Authentication.

What is CVE-2022-45173?

The vulnerability allows for a bypass of Two-Factor Authentication under the /api/v1/vdeskintegration/challenge endpoint by modifying the response to fool the application into accepting incorrect TOTP.

The Impact of CVE-2022-45173

The impact of this CVE is significant as it could lead to unauthorized access to sensitive information by bypassing the Two-Factor Authentication mechanism in LIVEBOX Collaboration vDesk.

Technical Details of CVE-2022-45173

This section provides technical details about the vulnerability.

Vulnerability Description

The issue arises from the fact that only the client-side performs the verification, allowing an attacker to manipulate the response and trick the application into validating incorrect TOTP.

Affected Systems and Versions

All versions of LIVEBOX Collaboration vDesk through v018 are affected by this vulnerability.

Exploitation Mechanism

By modifying the response under the specific endpoint, an attacker can exploit this vulnerability to bypass Two-Factor Authentication.

Mitigation and Prevention

It is crucial to take immediate steps to address and prevent exploitation of CVE-2022-45173.

Immediate Steps to Take

Disable Two-Factor Authentication or implement additional server-side validation to mitigate the risk of bypass attacks.

Long-Term Security Practices

Regular security assessments, updates, and educating users on best security practices can help prevent such vulnerabilities.

Patching and Updates

Ensure all systems are promptly patched and updated to the latest secure versions to address this vulnerability.