Lucene search

GitHub_MCVELIST:CVE-2023-33198

HistoryMay 30, 2023 - 4:37 a.m.

CVE-2023-33198 Incorrectly Specified Chat Message Destinations in tgstation-server and DreamMaker API

2023-05-3004:37:13

CWE-941

GitHub_M

www.cve.org

cve-2023-33198

tgstation-server

dreammaker api

chat message

poisoning

tgs restart

irc

discord

chat bots

chat channels

dreamdaemon

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

49.6%

JSON

tgstation-server is a production scale tool for BYOND server management. The DreamMaker API (DMAPI) chat channel cache can possibly be poisoned by a tgstation-server (TGS) restart and reattach. This can result in sending chat messages to one of any of the configured IRC or Discord channels for the instance on enabled chat bots. This lasts until the instance’s chat channels are updated in TGS or DreamDaemon is restarted. TGS chat commands are unaffected, custom or otherwise.

CNA Affected

[
  {
    "vendor": "tgstation",
    "product": "tgstation-server",
    "versions": [
      {
        "version": ">= 4.0.0, < 5.12.2",
        "status": "affected"
      }
    ]
  }
]

References

github.com/tgstation/tgstation-server/pull/1493

github.com/tgstation/tgstation-server/releases/tag/tgstation-server-v5.12.2

github.com/tgstation/tgstation-server/security/advisories/GHSA-p2xj-w57r-6f5m

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

49.6%

JSON

Related for CVELIST:CVE-2023-33198