Login Sign Up

CVE-2022-0579

6.5 MEDIUM
Authentication Bypass

📋 TL;DR

CVE-2022-0579 is a missing authorization vulnerability in Snipe-IT asset management software that allows authenticated users to access unauthorized functionality. This affects all Snipe-IT installations prior to version 5.3.9. Attackers with valid credentials can exploit this to perform actions beyond their intended permissions.

💻 Affected Systems

Products:
  • Snipe-IT
Versions: All versions prior to 5.3.9
Operating Systems: All platforms running Snipe-IT
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all Snipe-IT deployments regardless of configuration. Requires authenticated user access to exploit.

📦 What is this software?

Snipe It by Snipeitapp

View all CVEs affecting Snipe It →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An authenticated attacker could escalate privileges, modify critical system settings, access sensitive data, or perform administrative actions without proper authorization.

🟠

Likely Case

Users with limited permissions could access functionality reserved for administrators, potentially modifying asset records, user permissions, or system configurations.

🟢

If Mitigated

With proper access controls and network segmentation, impact is limited to authorized users accessing some additional functionality within their authenticated session scope.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires valid user credentials but minimal technical skill once authenticated. The vulnerability is in authorization logic, not authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 5.3.9

Vendor Advisory: https://github.com/snipe/snipe-it/commit/db0c0e790892db874573d95f8ae4268b8a011ab1

Restart Required: No

Instructions:

1. Backup your Snipe-IT database and files. 2. Update to Snipe-IT version 5.3.9 or later via Composer: 'composer update snipe/snipe-it'. 3. Run database migrations if required: 'php artisan migrate'. 4. Clear cache: 'php artisan config:clear' and 'php artisan cache:clear'.

🔧 Temporary Workarounds

Temporary Access Restriction

all

Implement additional authorization checks at web server or application firewall level

🧯 If You Can't Patch

  • Implement strict network access controls to limit Snipe-IT access to trusted users only
  • Enable detailed audit logging and monitor for unauthorized access attempts

🔍 How to Verify

Check if Vulnerable:

Check Snipe-IT version via web interface or by examining composer.lock file for snipe/snipe-it version

Check Version:

grep -A2 'snipe/snipe-it' composer.lock | grep version

Verify Fix Applied:

Confirm version is 5.3.9 or later and test authorization controls for previously vulnerable endpoints

📡 Detection & Monitoring

Log Indicators:

  • Unauthorized access attempts to admin endpoints by non-admin users
  • User performing actions outside their role permissions

Network Indicators:

  • HTTP requests to sensitive endpoints from non-privileged user accounts

SIEM Query:

source='snipe-it-logs' AND (event_type='unauthorized_access' OR user_role!='admin' AND endpoint CONTAINS '/admin/')

📊 Metadata

CVE ID: CVE-2022-0579
CVSS v3 Score: 6.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-862
Published: February 14, 2022
Last Updated: February 24, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-0579, you might also want to check these:

CVE-2024-6071 10.0

CVE-2024-6071 is a critical remote code execution vulnerability in PTC Creo Elements/Direct License ...

Same vulnerability type (CWE-862)
CVE-2022-0543 10.0

CVE-2022-0543 is a critical Lua sandbox escape vulnerability in Redis on Debian-based systems that a...

Same vulnerability type (CWE-862)
CVE-2024-6500 10.0

This vulnerability allows unauthenticated attackers to read and delete arbitrary files on WordPress ...

Same vulnerability type (CWE-862)