Lucene search

Veracode Vulnerability DatabaseVERACODE:43702

HistoryOct 10, 2023 - 5:41 a.m.

Improper Input Validation

2023-10-1005:41:05

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

postcss vulnerability

improper input validation

carriage return

security

validation check

css injection

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

20.6%

JSON

postcss is vulnerable to Improper Input Validation. The vulnerability is due to the RE_BAD_BRACKET in tokenize.js which does not account for carriage returns (\r). This means that any CSS containing a carriage return character \r would not be matched by this regular expression, potentially allowing malicious CSS to bypass any security or validation check that relies on this regular expression check. This can leads to potential CSS injection vulnerabilities.

CPENameOperatorVersion
postcssle8.4.30
postcssle8.4.30
node-postcss:sideq7.0.34-1

Name	Operator	Version
postcss	le	8.4.30
postcss	le	8.4.30
node-postcss:sid	eq	7.0.34-1

References

github.com/advisories/GHSA-7fh5-64p2-3v2j

github.com/github/advisory-database/issues/2820

github.com/postcss/postcss/blob/main/lib/tokenize.js#L25

github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5

github.com/postcss/postcss/releases/tag/8.4.31

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

20.6%

JSON

Related for VERACODE:43702