CVE-2023-36472

2023-09-1519:15:08

Google

osv.dev

strapi

open-source

content management system

unauthorized access

password tokens

security vulnerability

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.1%

JSON

Strapi is an open-source headless content management system. Prior to version 4.11.7, an unauthorized actor can get access to user reset password tokens if they have the configure view permissions. The /content-manager/relations route does not remove private fields or ensure that they can’t be selected. This issue is fixed in version 4.11.7.

CPENameOperatorVersion
strapieq4.2.0-beta.0
strapieq3.0.0-beta.18.1
strapieq3.0.0-beta.18.8
strapieq3.0.0-beta.19.3
strapieq3.5.1
strapieq3.0.0-beta.3
strapieq3.0.2
strapieq3.0.0-alpha.8.3
strapieq3.0.0-alpha.12.2
strapieq1.0.1

Name	Operator	Version
strapi	eq	4.2.0-beta.0
strapi	eq	3.0.0-beta.18.1
strapi	eq	3.0.0-beta.18.8
strapi	eq	3.0.0-beta.19.3
strapi	eq	3.5.1
strapi	eq	3.0.0-beta.3
strapi	eq	3.0.2
strapi	eq	3.0.0-alpha.8.3
strapi	eq	3.0.0-alpha.12.2
strapi	eq	1.0.1