Canarytokens
CVE-2019-9768
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Thinkst Canarytokens through commit hash 4e89ee0 (2019-03-01) relies on limited variation in size, metadata, and timestamp, which makes it easier for attackers to estimate whether a Word document contains a token.
AnalysisAI
Thinkst Canarytokens through commit hash 4e89ee0 (2019-03-01) relies on limited variation in size, metadata, and timestamp, which makes it easier for attackers to estimate whether a Word document. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-264. Thinkst Canarytokens through commit hash 4e89ee0 (2019-03-01) relies on limited variation in size, metadata, and timestamp, which makes it easier for attackers to estimate whether a Word document contains a token. Affected products include: Thinkst Canarytokens.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Canarytokens
View allCanarytokens helps track activity and actions on a network. Rated medium severity (CVSS 6.5), this vulnerability is remo
Canarytokens is an open source tool which helps track activity and actions on your network. Rated medium severity (CVSS
Canarytokens is an open source tool which helps track activity and actions on your network. Rated medium severity (CVSS
HTML injection in Canarytokens' Google Chat webhook notifications allows an attacker who triggers a deployed canarytoken
Stored XSS in the AWS API key store component of Thinkst Applied Research Canarytokens allows a low-privileged attacker
Same technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today