CVE-2023-32751
Last modified
CVE-2023-32751 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. Pydio Cells through 4.1.2 allows XSS. Pydio Cells implements the download of files using presigned URLs which are generated using the Amazon AWS SDK for JavaScript [1]. EPSS estimates a 2.94% chance of exploitation in the next 30 days.
Description
Pydio Cells through 4.1.2 allows XSS. Pydio Cells implements the download of files using presigned URLs which are generated using the Amazon AWS SDK for JavaScript [1]. The secrets used to sign these URLs are hardcoded and exposed through the JavaScript files of the web application. Therefore, it is possible to generate valid signatures for arbitrary download URLs. By uploading an HTML file and modifying the download URL to serve the file inline instead of as an attachment, any included JavaScript code is executed when the URL is opened in a browser, leading to a cross-site scripting vulnerability.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Pydio | Cells | < 3.0.12 |
| Pydio | Cells | >= 4.1.0, < 4.1.3 |
References
- https://www.redteam-pentesting.de/advisories/rt-sa-2023-004/Exploit, Third Party Advisory
- https://www.redteam-pentesting.de/advisories/rt-sa-2023-004/Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-32751?
How severe is CVE-2023-32751?
How do I fix CVE-2023-32751?
Are you affected by CVE-2023-32751?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST