Lucene search

GitHub_MCVE-2024-41676

HistoryJul 29, 2024 - 3:15 p.m.

CVE-2024-41676

2024-07-2915:15:16

CWE-79

GitHub_M

web.nvd.nist.gov

magento-lts

long-term support

xss vulnerability

design/header/welcome

design/header/logo_src

design/header/logo_src_small

design/header/logo_alt

admins

image url

arbitrary html

arbitrary javascript

patch

version 20.10.1.

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

AI Score

4.3

Confidence

High

EPSS

Percentile

14.7%

JSON

Magento-lts is a long-term support alternative to Magento Community Edition (CE). This XSS vulnerability affects the design/header/welcome, design/header/logo_src, design/header/logo_src_small, and design/header/logo_alt system configs.They are intended to enable admins to set a text in the two cases, and to define an image url for the other two cases.
But because of previously missing escaping allowed to input arbitrary html and as a consequence also arbitrary JavaScript. The problem is patched with Version 20.10.1 or higher.

Affected configurations

Nvd

Vulners

Node

openmagemagentoRange<20.10.1lts

VendorProductVersionCPE
openmagemagento*cpe:2.3:a:openmage:magento:*:*:*:*:lts:*:*:*

Vendor	Product	Version	CPE
openmage	magento	*	cpe:2.3:a:openmage:magento:::::lts:::*

CNA Affected

[
  {
    "vendor": "OpenMage",
    "product": "magento-lts",
    "versions": [
      {
        "version": "< 20.10.1",
        "status": "affected"
      }
    ]
  }
]