Lucene search

GoogleOSV:GHSA-VXQ2-P937-3PX3

HistoryMar 25, 2024 - 7:39 p.m.

Pinned entity creation form shows wrong data

2024-03-2519:39:21

Google

osv.dev

data access

security breach

software patch

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

Percentile

9.0%

JSON

Impact

Logged in user can access page state data of pinned pages of other users by pageId hash.

Patch

--- src/Oro/Bundle/NavigationBundle/Controller/Api/PagestateController.php
+++ src/Oro/Bundle/NavigationBundle/Controller/Api/PagestateController.php
@@ -158,6 +158,13 @@
             AbstractPageState::generateHash($this-&gt;get('request_stack')-&gt;getCurrentRequest()-&gt;get('pageId'))
         );
 
+        if ($entity) {
+            $entity = $this-&gt;getEntity($entity-&gt;getId());
+        }
+        if (!$entity) {
+            return $this-&gt;handleNotFound();
+        }
+
         return $this-&gt;handleView($this-&gt;view($this-&gt;getState($entity), Response::HTTP_OK));
     }

References

github.com/oroinc/platform

github.com/oroinc/platform/commit/cf94df7595afca052796e26b299d2ce031e289cd

github.com/oroinc/platform/security/advisories/GHSA-vxq2-p937-3px3

nvd.nist.gov/vuln/detail/CVE-2023-45824

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

Percentile

9.0%

JSON

Related for OSV:GHSA-VXQ2-P937-3PX3