CVE-2022-34771 MEDIUM

CVE-2022-34771: Tabit - arbitrary SMS send on Tabits behalf

Vendor Tabit
Product Tabit
Published August 22, 2022
Last update September 16, 2024

CVSS base score

5.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits behalf to anyone registered on the system - the API receives the parameters: phone number, and CustomMessage, We can use that API to craft malicious messages to any user of the system. In addition, the API probably has some kind of template injection potential. When entering {{OTP}} in the custom message field it is formatted into an OTP.

Key dates

02Disclosure timeline

August 22, 2022 CVE published
September 16, 2024 Record updated