Lucene search

GoogleOSV:GHSA-HRWW-X3FQ-XCVH

HistoryAug 20, 2024 - 6:32 p.m.

Umbraco CMS Improper Access Control vulnerability

2024-08-2018:32:26

Google

osv.dev

umbraco cms

access control

vulnerability

authenticated user

unintended endpoints

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

AI Score

4.7

Confidence

High

EPSS

Percentile

14.7%

JSON

Impact

As an authenticated user one can access a few unintended endpoints

Explanation of the vulnerability

Few endpoints in Umbraco Management API was not protected by a specific section. These just required you to be authenticated. Due to the fact that a member is also just authenticated, it was possible to get info from these endpoints using a member token.

References

github.com/umbraco/Umbraco-CMS

github.com/umbraco/Umbraco-CMS/commit/72bef8861d94a39d5cc9530a04c4797b91fcbecf

github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-hrww-x3fq-xcvh

nvd.nist.gov/vuln/detail/CVE-2024-43377

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

AI Score

4.7

Confidence

High

EPSS

Percentile

14.7%

JSON

Related for OSV:GHSA-HRWW-X3FQ-XCVH