9.9

CVE-2023-34465

Exploit

XWiki Platform's Mail.MailConfig can be edited by any user with edit rights

XWiki Platform is a generic wiki platform. Starting in version 11.8-rc-1 and prior to versions 14.4.8, 14.10.6, and 15.2, `Mail.MailConfig` can be edited by any logged-in user by default. Consequently, they can change the mail obfuscation configuration and view and edit the mail sending configuration, including the smtp domain name and credentials. The problem has been patched in XWiki 14.4.8, 14.10.6, and 15.1. As a workaround, the rights of the `Mail.MailConfig` page can be manually updated so that only a set of trusted users can view, edit and delete it (e.g., the `XWiki.XWikiAdminGroup` group).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
XwikiXwiki Version >= 11.8.1 < 14.4.8
XwikiXwiki Version >= 14.10 < 14.10.6
XwikiXwiki Version11.8 Updatemilestone1
XwikiXwiki Version15.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.85% 0.534
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.1 2.8 5.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
security-advisories@github.com 9.9 3.1 6
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

https://github.com/xwiki/xwiki-platform/commit/8910b8857d3442d2e8142f655fdc0512930354d1
Patch
Vendor Advisory
https://github.com/xwiki/xwiki-platform/commit/d28d7739089e1ae8961257d9da7135d1a01cb7d4
Patch
Vendor Advisory
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g75c-cjr6-39mc
Vendor Advisory
https://jira.xwiki.org/browse/XWIKI-20519
Patch
Vendor Advisory
Issue Tracking
https://jira.xwiki.org/browse/XWIKI-20671
Patch
Vendor Advisory
Exploit
Issue Tracking