Lucene search

GitHub_MCVELIST:CVE-2023-40020

HistoryAug 14, 2023 - 8:03 p.m.

CVE-2023-40020 Improper Authentication in PrivateUploader

2023-08-1420:03:10

CWE-287

GitHub_M

www.cve.org

improper authentication

privateuploader

vue

typescript

administrator

moderator

403 error

version 3.2.49 fix

upgrade

vulnerability

CVSS3

9.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

32.3%

JSON

PrivateUploader is an open source image hosting server written in Vue and TypeScript. In affected versions app/routes/v3/admin.controller.ts did not correctly verify whether the user was an administrator (High Level) or moderator (Low Level) causing the request to continue processing. The response would be a 403 with ADMIN_ONLY, however, next() would call leading to any updates/changes in the route to process. This issue has been addressed in version 3.2.49. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CNA Affected

[
  {
    "vendor": "PrivateUploader",
    "product": "PrivateUploader",
    "versions": [
      {
        "version": "< 3.2.49",
        "status": "affected"
      }
    ]
  }
]

References

github.com/PrivateUploader/PrivateUploader/commit/869657d61e3c7a518177106fe63ea483082b0d3e

github.com/PrivateUploader/PrivateUploader/security/advisories/GHSA-vhrw-2472-rrjx

CVSS3

9.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

32.3%

JSON

Related for CVELIST:CVE-2023-40020