CVE-2021-39192

Published: Sep 3, 2021Modified: Nov 21, 2024

7.2

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

Ghost is a Node.js content management system. An error in the implementation of the limits service between versions 4.0.0 and 4.9.4 allows all authenticated users (including contributors) to view admin-level API keys via the integrations API endpoint, leading to a privilege escalation vulnerability. This issue is patched in Ghost version 4.10.0. As a workaround, disable all non-Administrator accounts to prevent API access. It is highly recommended to regenerate all API keys after patching or applying the workaround.

Affected (1)

Products: Ghost: Ghost

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ghost Ghost	From 4.0.0 to 4.10.0

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

https://github.com/TryGhost/Ghost/releases/tag/v4.10.0

Source: security-advisories@github.com

Release NotesThird Party Advisory

https://github.com/TryGhost/Ghost/security/advisories/GHSA-j5c2-hm46-wp5c

Source: security-advisories@github.com

Third Party Advisory

https://github.com/TryGhost/Ghost/releases/tag/v4.10.0

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesThird Party Advisory

https://github.com/TryGhost/Ghost/security/advisories/GHSA-j5c2-hm46-wp5c

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.