cvekit
LIVE
All CWEs

CWE-293

Using Referer Field for Authentication

VariantDraftSimple1 CVE
The referer field in HTTP requests can be easily modified and, as such, is not a valid means of message integrity checking.

Common consequences1

  • Access ControlGain Privileges or Assume Identity

    Actions, which may not be authorized otherwise, can be carried out as if they were validated by the server referred to.

Potential mitigations1

  1. Architecture and Design

    In order to usefully check if a given action is authorized, some means of strong authentication and method protection must be used. Use other means of authorization that cannot be simply spoofed. Possibilities include a username/password or certificate.

Relationships1

CVEs referencing this CWE1

CVEDescriptionSeverityEPSSFlagsModified
CVE-2023-20025

A vulnerability in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, and RV082 Routers could allow an unauthenticated, remote attacker to bypass authentication on an affected device. This vulnerability is due to improper validation of user input within incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface. A successful exploit could allow the attacker to bypass authentication and gain root access on the underlying operating system.

CRITICAL9.8
1.63%p73
PoC
2025-04-07