gsd-2022-41932
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form. This may lead to degraded database performance. The problem has been patched in XWiki 13.10.8, 14.6RC1 and 14.4.2. Users are advised to upgrade. There are no known workarounds for this issue.
Aliases
Aliases
{ GSD: { alias: "CVE-2022-41932", id: "GSD-2022-41932", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2022-41932", ], details: "XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form. This may lead to degraded database performance. The problem has been patched in XWiki 13.10.8, 14.6RC1 and 14.4.2. Users are advised to upgrade. There are no known workarounds for this issue.", id: "GSD-2022-41932", modified: "2023-12-13T01:19:33.022401Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2022-41932", STATE: "PUBLIC", TITLE: "Creation of new database tables through login form on PostgreSQL", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "xwiki-platform", version: { version_data: [ { version_value: "< 13.10.8", }, { version_value: ">= 14.0.0, < 14.4.2", }, { version_value: ">= 14.5.0, < 14.6-rc-1", }, ], }, }, ], }, vendor_name: "xwiki", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form. This may lead to degraded database performance. The problem has been patched in XWiki 13.10.8, 14.6RC1 and 14.4.2. Users are advised to upgrade. There are no known workarounds for this issue.", }, ], }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-400: Uncontrolled Resource Consumption", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4x5r-6v26-7j4v", refsource: "CONFIRM", url: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4x5r-6v26-7j4v", }, { name: "https://jira.xwiki.org/browse/XWIKI-19886", refsource: "MISC", url: "https://jira.xwiki.org/browse/XWIKI-19886", }, ], }, source: { advisory: "GHSA-4x5r-6v26-7j4v", discovery: "UNKNOWN", }, }, "gitlab.com": { advisories: [ { affected_range: "(,13.10.8),[14.0.0,14.4.2),[14.5.0,14.6-rc-1)", affected_versions: "All versions before 13.10.8, all versions starting from 14.0.0 before 14.4.2, all versions starting from 14.5.0 before 14.6-rc-1", cwe_ids: [ "CWE-1035", "CWE-937", ], date: "2022-11-21", description: "### Impact\n\nIt's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form.\n\n### Patches\n\nThe problem has been patched in XWiki 13.10.8, 14.6RC1 and 14.4.2.\n\n### Workarounds\n\nThe only workarounds for this are:\n* use an authenticator which does interpret the login as a reference to a document\n* using a different database than PostgreSQL\n* upgrade XWiki\n\n### References\n\nhttps://jira.xwiki.org/browse/XWIKI-19886\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [Jira XWiki.org](https://jira.xwiki.org/)\n* Email us at [Security Mailing List](mailto:security@xwiki.org)\n", fixed_versions: [ "13.10.8", "14.4.2", "14.6-rc-1", ], identifier: "GMS-2022-6934", identifiers: [ "GHSA-4x5r-6v26-7j4v", "GMS-2022-6934", "CVE-2022-41932", ], not_impacted: "All versions starting from 13.10.8 before 14.0.0, all versions starting from 14.4.2 before 14.5.0, all versions starting from 14.6-rc-1", package_slug: "maven/org.xwiki.platform/xwiki-platform-oldcore", pubdate: "2022-11-21", solution: "Upgrade to versions 13.10.8, 14.4.2, 14.6-rc-1 or above. *Note*: 14.6-rc-1 may be an unstable version. Use caution.", title: "Creation of new database tables through login form on PostgreSQL", urls: [ "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4x5r-6v26-7j4v", "https://github.com/advisories/GHSA-4x5r-6v26-7j4v", ], uuid: "2172290c-6ba3-49ad-b48b-a3c7b255b5e2", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "13.10.8", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "14.4.2", versionStartIncluding: "14.0.0", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "14.6", versionStartIncluding: "14.5.0", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:xwiki:xwiki:14.4.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:xwiki:xwiki:14.4.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2022-41932", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form. This may lead to degraded database performance. The problem has been patched in XWiki 13.10.8, 14.6RC1 and 14.4.2. Users are advised to upgrade. There are no known workarounds for this issue.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-770", }, ], }, ], }, references: { reference_data: [ { name: "https://jira.xwiki.org/browse/XWIKI-19886", refsource: "MISC", tags: [ "Issue Tracking", "Patch", "Vendor Advisory", ], url: "https://jira.xwiki.org/browse/XWIKI-19886", }, { name: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4x5r-6v26-7j4v", refsource: "CONFIRM", tags: [ "Third Party Advisory", ], url: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-4x5r-6v26-7j4v", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, }, }, lastModifiedDate: "2023-07-10T16:38Z", publishedDate: "2022-11-23T21:15Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.