Lucene search

GoogleOSV:BIT-DISCOURSE-2022-39241

HistoryMar 06, 2024 - 11:04 a.m.

BIT-discourse-2022-39241

2024-03-0611:04:00

Google

osv.dev

discourse

community discussion

vulnerability

patch

self-hosters

webhooks

private ips

CVSS3

7.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON

Discourse is a platform for community discussion. A malicious admin could use this vulnerability to perform port enumeration on the local host or other hosts on the internal network, as well as against hosts on the Internet. Latest stable, beta, and test-passed versions are now patched. As a workaround, self-hosters can use DISCOURSE_BLOCKED_IP_BLOCKS env var (which overrides blocked_ip_blocks setting) to stop webhooks from accessing private IPs.

References

github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr

CVSS3

7.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON

Related for OSV:BIT-DISCOURSE-2022-39241