7.3

CVE-2024-6586

EPSS 20%
Veröffentlicht 30.08.2024 23:15:12
Zuletzt bearbeitet 03.09.2024 15:35:16
Quelle mandiant-cve@google.com
CVE-Watchlists
Login
Unerledigt
Login

Lightdash version 0.1024.6 allows users with the necessary permissions, such as Administrator or Editor, to create and share dashboards. A dashboard that contains HTML elements which point to a threat actor controlled source can trigger an SSRF request when exported, via a POST request to /api/v1/dashboards//export. The forged request contains the value of the exporting user’s session token. A threat actor could obtain the session token of any user who exports the dashboard. The obtained session token can be used to perform actions as the victim on the application, resulting in session takeover.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

Herstellerlightdash

≫

Produkt lightdash

Default Statusunknown

Version < 0.1027.2

Version 0.1024.6

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	20%	0.953

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.3	2.1	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

CWE-201 Insertion of Sensitive Information Into Sent Data

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

https://github.com/lightdash/lightdash

https://github.com/google/security-research/security/advisories/GHSA-4h7x-6vxh-7hjf

https://github.com/lightdash/lightdash/pull/9295

https://github.com/lightdash/lightdash/releases/tag/0.1027.2

https://patch-diff.githubusercontent.com/raw/lightdash/lightdash/pull/9295.patch

https://www.cve.org/CVERecord?id=CVE-2024-6586

https://nvd.nist.gov/vuln/detail/CVE-2024-6586

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6586

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6586

EUVD