Lucene search

[email protected]NVD:CVE-2020-25817

HistoryJun 08, 2021 - 6:15 p.m.

CVE-2020-25817

2021-06-0818:15:07

CWE-611

[email protected]

web.nvd.nist.gov

silverstripe

xxe vulnerability

csscontentparser

xss

html output

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

41.5%

JSON

SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity (XXE) attacks. When this developer utility is misused for purposes involving external or user submitted data in custom project code, it can lead to vulnerabilities such as XSS on HTML output rendered through this custom code. This is now mitigated by disabling external entities during parsing. (The correct CVE ID year is 2020 [CVE-2020-25817, not CVE-2021-25817]).

Affected configurations

Nvd

Node

silverstripesilverstripeRange<4.6.0

silverstripesilverstripeMatch4.6.0rc1

VendorProductVersionCPE
silverstripesilverstripe*cpe:2.3:a:silverstripe:silverstripe:*:*:*:*:*:*:*:*
silverstripesilverstripe4.6.0cpe:2.3:a:silverstripe:silverstripe:4.6.0:rc1:*:*:*:*:*:*

Vendor	Product	Version	CPE
silverstripe	silverstripe	*	cpe:2.3:a:silverstripe:silverstripe::::::::
silverstripe	silverstripe	4.6.0	cpe:2.3:a:silverstripe:silverstripe:4.6.0:rc1::::::