fkie_cve-2022-39226
Vulnerability from fkie_nvd
Published
2022-09-29 20:15
Modified
2024-11-21 07:17
Severity ?
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Summary
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the `stable` branch and prior to 2.9.0.beta10 on the `beta` and `tests-passed` branches, a malicious actor can add large payloads of text into the Location and Website fields of a user profile, which causes issues for other users when loading that profile. A fix to limit the length of user input for these fields is included in version 2.8.9 on the `stable` branch and version 2.9.0.beta10 on the `beta` and `tests-passed` branches. There are no known workarounds.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| security-advisories@github.com | https://github.com/discourse/discourse/commit/e69f7d2fd9c977dedbdb17f6813651e2a45bfb71 | Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/discourse/discourse/pull/18302 | Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/discourse/discourse/security/advisories/GHSA-jw3q-xg5g-qjrw | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/discourse/discourse/commit/e69f7d2fd9c977dedbdb17f6813651e2a45bfb71 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/discourse/discourse/pull/18302 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/discourse/discourse/security/advisories/GHSA-jw3q-xg5g-qjrw | Third Party Advisory |
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:discourse:discourse:*:*:*:*:*:*:*:*", matchCriteriaId: "3BC8F74E-6BEF-4A8C-AF34-A0FC24A1EDFE", versionEndExcluding: "2.8.9", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta1:*:*:*:*:*:*", matchCriteriaId: "B3803EF9-A296-42B7-887F-93C5E68E94C4", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta2:*:*:*:*:*:*", matchCriteriaId: "8BA3D313-3C11-43E2-A47D-CBB532D1B6F8", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta3:*:*:*:*:*:*", matchCriteriaId: "6F42673E-65F3-4807-9484-20CB747420FB", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta4:*:*:*:*:*:*", matchCriteriaId: "0B91D023-FCE5-4866-AD8B-BBB675763104", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta5:*:*:*:*:*:*", matchCriteriaId: "0086484D-0164-449C-8AAE-BE7479CB9706", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta6:*:*:*:*:*:*", matchCriteriaId: "F9D1B031-96C7-44C0-A0A0-F67ABE55C93C", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta7:*:*:*:*:*:*", matchCriteriaId: "750D2AD9-35E7-4AC7-9C22-AA90DAA34F3F", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta8:*:*:*:*:*:*", matchCriteriaId: "B68E308A-BDAB-4614-A563-4460F7996CBE", vulnerable: true, }, { criteria: "cpe:2.3:a:discourse:discourse:2.9.0:beta9:*:*:*:*:*:*", matchCriteriaId: "5DEDE4C5-2C2A-4B74-BB41-8AAA0EE636E2", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Discourse is an open source discussion platform. In versions prior to 2.8.9 on the `stable` branch and prior to 2.9.0.beta10 on the `beta` and `tests-passed` branches, a malicious actor can add large payloads of text into the Location and Website fields of a user profile, which causes issues for other users when loading that profile. A fix to limit the length of user input for these fields is included in version 2.8.9 on the `stable` branch and version 2.9.0.beta10 on the `beta` and `tests-passed` branches. There are no known workarounds.", }, { lang: "es", value: "Discourse es una plataforma de discusión de código abierto. En versiones anteriores a 2.8.9 en la rama \"stable\" y anteriores a 2.9.0.beta10 en las ramas \"beta\" y \"tests-passed\", un actor malicioso puede añadir grandes cargas de texto en los campos Location y Website de un perfil de usuario, lo que causa problemas a otros usuarios cuando es cargado ese perfil. En versión 2.8.9 de la rama \"stable\" y en la versión 2.9.0.beta10 de las ramas \"beta\" y \"tests-passed\" es incluida una corrección para limitar la longitud de la entrada del usuario en estos campos. No se presentan mitigaciones conocidas", }, ], id: "CVE-2022-39226", lastModified: "2024-11-21T07:17:49.593", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "security-advisories@github.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2022-09-29T20:15:13.760", references: [ { source: "security-advisories@github.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/discourse/discourse/commit/e69f7d2fd9c977dedbdb17f6813651e2a45bfb71", }, { source: "security-advisories@github.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/discourse/discourse/pull/18302", }, { source: "security-advisories@github.com", tags: [ "Third Party Advisory", ], url: "https://github.com/discourse/discourse/security/advisories/GHSA-jw3q-xg5g-qjrw", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/discourse/discourse/commit/e69f7d2fd9c977dedbdb17f6813651e2a45bfb71", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/discourse/discourse/pull/18302", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://github.com/discourse/discourse/security/advisories/GHSA-jw3q-xg5g-qjrw", }, ], sourceIdentifier: "security-advisories@github.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-20", }, { lang: "en", value: "CWE-770", }, ], source: "security-advisories@github.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-770", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.