Lucene search

Veracode Vulnerability DatabaseVERACODE:39684

HistoryMar 12, 2023 - 12:40 p.m.

Server-side Request Forgery (SSRF)

2023-03-1212:40:23

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

directus is vulnerable to Server-side Request Forgery (SSRF). The vulnerability exists when importing a file from a remote web server (POST to /files/import), allowing an attacker to bypass the security controls that were implemented to patch the CVE-2022-23080 vulnerability by performing a DNS rebinding attack and view sensitive data from internal servers or perform a local port scan.

CPENameOperatorVersion
directusle9.22.4
directusle9.22.4

CPE	Name	Operator	Version
	directus	le	9.22.4
	directus	le	9.22.4

References

github.com/directus/directus/commit/ff53d3e69a602d05342e15d9bb616884833ddbff

github.com/directus/directus/releases/tag/v9.23.0

github.com/directus/directus/security/advisories/GHSA-j3rg-3rgm-537h

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

Related for VERACODE:39684