7.5

CVE-2023-40183

Exploit

EPSS 0.1%
Published 21.09.2023 15:15:10
Last modified 21.11.2024 08:18:57
Source security-advisories@github.com
Teams watchlist Login
Open Login

DataEase is an open source data visualization and analysis tool. Prior to version 1.18.11, DataEase has a vulnerability that allows an attacker to to obtain user cookies. The program only uses the `ImageIO.read()` method to determine whether the file is an image file or not. There is no whitelisting restriction on file suffixes. This allows the attacker to synthesize the attack code into an image for uploading and change the file extension to html. The attacker may steal user cookies by accessing links. The vulnerability has been fixed in v1.18.11. There are no known workarounds.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Dataease ≫ Dataease Version < 1.18.11

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.293

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
security-advisories@github.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://github.com/dataease/dataease/commit/826513053146721a2b3e09a9c9d3ea41f8f10569

Patch

https://github.com/dataease/dataease/releases/tag/v1.18.11

Release Notes

https://github.com/dataease/dataease/security/advisories/GHSA-w2r4-2r4w-fjxv

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-40183

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-40183

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-40183

EUVD