CVE-2023-49791

EPSS 0.2%
Veröffentlicht 22.12.2023 17:15:08
Zuletzt bearbeitet 21.11.2024 08:33:50
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Workflows do not require password confirmation on API level

Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. In Nextcloud Server prior to versions 26.0.9 and 27.1.4; as well as Nextcloud Enterprise Server prior to versions 23.0.12.13, 24.0.12.9, 25.0.13.4, 26.0.9, and 27.1.4; when an attacker manages to get access to an active session of another user via another way, they could delete and modify workflows by sending calls directly to the API bypassing the password confirmation shown in the UI. Nextcloud Server versions 26.0.9 and 27.1.4 and Nextcloud Enterprise Server versions 23.0.12.13, 24.0.12.9, 25.0.13.4, 26.0.9, and 27.1.4 contain a patch for this issue. No known workarounds are available.

Mögliche Gegenmaßnahme

Server: * No workaround available

Enterprise Server: * No workaround available

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 7

NVD 7 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nextcloud ≫ Nextcloud Server SwEditionenterprise Version >= 23.0.0 < 23.0.12.13

Nextcloud ≫ Nextcloud Server SwEditionenterprise Version >= 24.0.0 < 24.0.12.9

Nextcloud ≫ Nextcloud Server SwEditionenterprise Version >= 25.0.0 < 25.0.13.4

Nextcloud ≫ Nextcloud Server SwEdition- Version >= 26.0.0 < 26.0.9

Nextcloud ≫ Nextcloud Server SwEditionenterprise Version >= 26.0.0 < 26.0.9

Nextcloud ≫ Nextcloud Server SwEdition- Version >= 27.0.0 < 27.1.4

Nextcloud ≫ Nextcloud Server SwEditionenterprise Version >= 27.0.0 < 27.1.4

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Weitere Schwachstelleninformationen

SystemNextcloud

≫

Produkt Server

Version >= 26.0.0, < 26.0.9

Version >= 27.0.0, < 27.1.4

SystemNextcloud

≫

Produkt Enterprise Server

Version >= 23.0.0, < 23.0.12.13

Version >= 24.0.0, < 24.0.12.9

Version >= 25.0.0, < 25.0.13.4

Version >= 26.0.0, < 26.0.9

Version >= 27.0.0, < 27.1.4

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.2%	0.418

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	2.8	2.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
security-advisories@github.com	5.4	2.8	2.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://github.com/nextcloud/security-advisories/security/advisories/GHSA-3f8p-6qww-2prr

Vendor Advisory

https://github.com/nextcloud/server/pull/41520

Patch

https://hackerone.com/reports/2120667

Permissions Required

https://github.com/nextcloud/security-advisories/security/advisories/GHSA-3f8p-6qww-2prr

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-49791

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-49791

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-49791

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-49791