CVE-2023-25573

Опубликовано: 09 мар. 2023

Источник: nvd

CVSS3: 8.6

CVSS3: 7.5

EPSS Критический

Описание

metersphere is an open source continuous testing platform. In affected versions an improper access control vulnerability exists in /api/jmeter/download/files, which allows any user to download any file without authentication. This issue may expose all files available to the running process. This issue has been addressed in version 1.20.20 lts and 2.7.1. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Ссылки

https://github.com/metersphere/metersphere/security/advisories/GHSA-mcwr-j9vm-5g8h
Exploit
Third Party Advisory
https://github.com/metersphere/metersphere/security/advisories/GHSA-mcwr-j9vm-5g8h
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:metersphere:metersphere:*:*:*:*:*:*:*:*

Версия до 1.20.19 (исключая)

cpe:2.3:a:metersphere:metersphere:*:*:*:*:*:*:*:*

Версия от 2.0.0 (включая) до 2.6.2 (включая)

EPSS

Процентиль: 100%

0.93455

Критический

8.6 High

CVSS3

7.5 High

CVSS3

Дефекты

CWE-862

EPSS

Процентиль: 100%

0.93455

Критический

8.6 High

CVSS3

7.5 High

CVSS3

Дефекты

CWE-862