Lucene search

GoogleOSV:GHSA-3X3F-JCP3-G22J

HistorySep 17, 2024 - 9:29 p.m.

@backstage/plugin-catalog-backend Prototype Pollution vulnerability

2024-09-1721:29:49

Google

osv.dev

vulnerability

catalog backend

authenticated access

interruption

service

query

api

package

fixed

release

backstage repository

discord

advisory

software

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.6

Confidence

High

JSON

Impact

A malicious actor with authenticated access to a Backstage instance with the catalog backend plugin installed is able to interrupt the service using a specially crafted query to the catalog API.

Patches

This has been fixed in the 1.26.0 release of the @backstage/plugin-catalog-backend package.

References

If you have any questions or comments about this advisory:

Open an issue in the Backstage repository
Visit our Discord, linked to in Backstage README

References

github.com/backstage/backstage

github.com/backstage/backstage/security/advisories/GHSA-3x3f-jcp3-g22j

nvd.nist.gov/vuln/detail/CVE-2024-45815

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.6

Confidence

High

JSON

Related for OSV:GHSA-3X3F-JCP3-G22J