Login Sign Up

CVE-2023-27583

9.8 CRITICAL
Authentication Bypass

📋 TL;DR

PanIndex versions before 3.1.3 use a hard-coded JWT key 'PanIndex', allowing attackers to forge authentication tokens and gain admin privileges. This affects all deployments of vulnerable PanIndex versions. Attackers can perform any administrative actions on the network disk directory index.

💻 Affected Systems

Products:
  • PanIndex
Versions: All versions prior to 3.1.3
Operating Systems: All platforms running PanIndex
Default Config Vulnerable: ⚠️ Yes
Notes: All deployments using vulnerable versions are affected regardless of configuration.

📦 What is this software?

Panindex by Panindex Project

View all CVEs affecting Panindex →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of the PanIndex instance with attacker gaining full administrative control, allowing data theft, modification, or destruction of indexed network disk contents.

🟠

Likely Case

Attackers forge admin JWT tokens to access, modify, or delete sensitive files and directories indexed by PanIndex.

🟢

If Mitigated

No impact if patched to version 3.1.3+ or JWT key is changed before compilation.

🌐 Internet-Facing: HIGH - Internet-facing instances are directly exploitable by any attacker who can reach the service.
🏢 Internal Only: HIGH - Internal instances are vulnerable to any internal attacker or compromised internal system.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires only knowledge of the hard-coded key and ability to craft JWT tokens, which is trivial with available libraries.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.1.3

Vendor Advisory: https://github.com/px-org/PanIndex/security/advisories/GHSA-82wq-gmw8-g87v

Restart Required: Yes

Instructions:

1. Download PanIndex version 3.1.3 or later from GitHub releases. 2. Replace existing installation with patched version. 3. Restart the PanIndex service.

🔧 Temporary Workarounds

Change JWT Key in Source

all

Modify the hard-coded JWT key in PanIndex source code before compiling and deploying.

Edit source code to replace 'PanIndex' JWT key with a strong random value
Recompile and redeploy the modified PanIndex

🧯 If You Can't Patch

  • Immediately isolate vulnerable PanIndex instances from untrusted networks
  • Implement network-level authentication or IP whitelisting to restrict access

🔍 How to Verify

Check if Vulnerable:

Check PanIndex version - if earlier than 3.1.3, it is vulnerable. Also check if JWT key in configuration/source is still 'PanIndex'.

Check Version:

Check PanIndex web interface or configuration files for version information

Verify Fix Applied:

Verify PanIndex version is 3.1.3 or later, and confirm JWT key is no longer 'PanIndex' in configuration.

📡 Detection & Monitoring

Log Indicators:

  • Unusual admin login patterns
  • Authentication attempts with forged JWT tokens
  • Administrative actions from unexpected IP addresses

Network Indicators:

  • JWT tokens containing 'PanIndex' key in authentication requests
  • Unusual administrative API calls

SIEM Query:

Search for authentication events with JWT tokens containing key 'PanIndex' or admin actions from non-standard sources

📊 Metadata

CVE ID: CVE-2023-27583
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-321
Published: March 13, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-27583, you might also want to check these:

CVE-2024-30207 10.0

This vulnerability affects multiple SIMATIC RTLS Locating Manager products where communication betwe...

Same vulnerability type (CWE-321)
CVE-2025-34256 9.8

This vulnerability allows remote unauthenticated attackers to forge JWT tokens using a hard-coded cr...

Same vulnerability type (CWE-321)
CVE-2026-25894 9.8

An insecure default configuration in FUXA web-based SCADA/HMI software allows unauthenticated remote...

Same vulnerability type (CWE-321)