Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:1361412562310126267HistoryDec 21, 2022 - 12:00 a.m.
Emby Server <= 4.7.11 XSS Vulnerability
2022-12-2100:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
6
emby server
xss vulnerability
cross-site scripting
stored xss
cve-2022-36223
web application abuse
vulnerable version 4.6.7.0
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
30.5%
Emby Server is prone to a cross-site scripting (XSS)
vulnerability.
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:emby:emby.releases";
if (description)
{
script_oid("1.3.6.1.4.1.25623.1.0.126267");
script_version("2023-12-22T05:05:24+0000");
script_tag(name:"last_modification", value:"2023-12-22 05:05:24 +0000 (Fri, 22 Dec 2023)");
script_tag(name:"creation_date", value:"2022-12-21 10:51:56 +0000 (Wed, 21 Dec 2022)");
script_tag(name:"cvss_base", value:"6.4");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-12-20 17:43:00 +0000 (Tue, 20 Dec 2022)");
script_cve_id("CVE-2022-36223");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"WillNotFix");
script_name("Emby Server <= 4.7.11 XSS Vulnerability");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Web application abuses");
script_dependencies("gb_emby_server_http_detect.nasl");
script_mandatory_keys("emby/media_server/detected");
script_tag(name:"summary", value:"Emby Server is prone to a cross-site scripting (XSS)
vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"The playlist name field is vulnerable to stored XSS
vulnerability.");
script_tag(name:"affected", value:"Emby Server version 4.6.7.0 and prior.");
script_tag(name:"solution", value:"No known solution was made available for at least one year since
the disclosure of this vulnerability. Likely none will be provided anymore. General solution options
are to upgrade to a newer release, disable respective features, remove the product or replace the
product by another one.");
script_xref(name:"URL", value:"https://medium.com/@cupc4k3/administrator-account-takeover-in-emby-media-server-616fc2a6704f");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if (!port = get_app_port(cpe: CPE))
exit(0);
if (!infos = get_app_version_and_location(cpe: CPE, port: port, exit_no_version: TRUE))
exit(0);
version = infos["version"];
location = infos["location"];
# nb: Checked the release notes for all versions between 4.6.7 and 4.7.11 and there is no reference for a fix
if (version_is_less_equal(version: version, test_version: "4.7.11")) {
report = report_fixed_ver(installed_version: version, fixed_version: "None", install_path: location);
security_message(port: port, data: report);
exit(0);
}
exit(0);
Related
nvd
nvd
CVE-2022-36223
2022-12-16 14:15:09
prion
prion
Design/Logic Flaw
2022-12-16 14:15:00
cvelist
cvelist
CVE-2022-36223
2022-12-16 00:00:00
cve
cve
CVE-2022-36223
2022-12-16 14:15:09
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
30.5%
Related for OPENVAS:1361412562310126267