Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-23621

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions any user with SCRIPT right can read any file located in the XWiki WAR (for example xwiki.cfg and xwiki.properties) through XWiki#invokeServletAndReturnAsString as `$xwiki.invokeServletAndReturnAsString("/WEB-INF/xwiki.cfg")`. This issue has been patched in XWiki versions 12.10.9, 13.4.3 and 13.7-rc-1. Users are advised to update. The only workaround is to limit SCRIPT right.

Published

2022-02-09T22:15:07.483

Last Modified

2024-11-21T06:48:57.203

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

8.0

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-862
Type: Primary
CWE-552
CWE-862

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	xwiki	xwiki	< 12.10.9	Yes
Application	xwiki	xwiki	< 13.4.3	Yes
Application	xwiki	xwiki	≤ 13.7	Yes

References

https://github.com/xwiki/xwiki-platform/commit/df8bd49b5a4d87a427002c6535fb5b1746ff117a Patch, Third Party Advisory ([email protected])
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-2jhm-qp48-hv5j Third Party Advisory ([email protected])
https://jira.xwiki.org/browse/XWIKI-18870 Patch, Vendor Advisory ([email protected])
https://github.com/xwiki/xwiki-platform/commit/df8bd49b5a4d87a427002c6535fb5b1746ff117a Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-2jhm-qp48-hv5j Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://jira.xwiki.org/browse/XWIKI-18870 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)