CVE-2023-29196
Last modified
CVE-2023-29196 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. Discourse is an open source platform for community discussion. This vulnerability is not exploitable on the default install of Discourse. EPSS estimates a 0.31% chance of exploitation in the next 30 days.
Description
Discourse is an open source platform for community discussion. This vulnerability is not exploitable on the default install of Discourse. A custom feature must be enabled for it to work at all, and the attacker’s payload must pass the CSP to be executed. However, if an attacker succeeds in embedding Javascript that does pass the CSP, it could result in session hijacking for any users that view the attacker’s post. The vulnerability is patched in the latest tests-passed, beta and stable branches. Users are advised to upgrade. Users unable to upgrade should enable and/or restore your site's CSP to the default one provided with Discourse. Remove any embed-able hosts configured.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Discourse | Discourse | < 3.0.3 | — |
| Discourse | Discourse | < 3.1.0 | — |
| Discourse | Discourse | 3.1.0 | Beta1 |
References
- https://github.com/discourse/discourse/security/advisories/GHSA-986p-4x8q-8f48Third Party Advisory
- https://github.com/discourse/discourse/security/advisories/GHSA-986p-4x8q-8f48Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-29196?
How severe is CVE-2023-29196?
How do I fix CVE-2023-29196?
Are you affected by CVE-2023-29196?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST