CVE-2021-43805

Опубликовано: 07 дек. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Solidus is a free, open-source ecommerce platform built on Rails. Versions of Solidus prior to 3.1.4, 3.0.4, and 2.11.13 have a denial of service vulnerability that could be exploited during a guest checkout. The regular expression used to validate a guest order's email was subject to exponential backtracking through a fragment like a.a. Versions 3.1.4, 3.0.4, and 2.11.13 have been patched to use a different regular expression. The maintainers added a check for email addresses that are no longer valid that will print information about any affected orders that exist. If a prompt upgrade is not an option, a workaround is available. It is possible to edit the file config/application.rb manually (with code provided by the maintainers in the GitHub Security Advisory) to check email validity.

Ссылки

https://github.com/solidusio/solidus/commit/9867153e01e3c3b898cdbcedd7b43375ea922401
Patch
Third Party Advisory
https://github.com/solidusio/solidus/security/advisories/GHSA-qxmr-qxh6-2cc9
Exploit
Mitigation
Third Party Advisory
https://github.com/solidusio/solidus/commit/9867153e01e3c3b898cdbcedd7b43375ea922401
Patch
Third Party Advisory
https://github.com/solidusio/solidus/security/advisories/GHSA-qxmr-qxh6-2cc9
Exploit
Mitigation
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*

Версия до 2.11.13 (исключая)

cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*

Версия от 3.0.0 (включая) до 3.0.4 (исключая)

cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*

Версия от 3.1.0 (включая) до 3.1.4 (исключая)

EPSS

Процентиль: 31%

0.00118

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-1333

Связанные уязвимости

GHSA-qxmr-qxh6-2cc9

CVSS3: 7.5

github

около 4 лет назад

ReDos vulnerability on guest checkout email validation

EPSS

Процентиль: 31%

0.00118

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-1333