CVE-2021-22967

Published: Nov 19, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In Concrete CMS (formerly concrete 5) below 8.5.7, IDOR Allows Unauthenticated User to Access Restricted Files If Allowed to Add Message to a Conversation.To remediate this, a check was added to verify a user has permissions to view files before attaching the files to a message in "add / edit message”.Concrete CMS security team gave this a CVSS v3.1 score of 4.3 AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NCredit for discovery Adrian H

Affected (1)

Products: Concretecms: Concrete Cms

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Concretecms Concrete Cms	Before 8.5.7

Related CWEs

Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

References (4)

https://documentation.concretecms.org/developers/introduction/version-history/857-release-notes

Source: support@hackerone.com

Release NotesVendor Advisory

https://hackerone.com/reports/869612

Source: support@hackerone.com

Permissions Required

https://documentation.concretecms.org/developers/introduction/version-history/857-release-notes

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://hackerone.com/reports/869612

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions Required

Timeline

No history available yet.