PT-2023-24661 · Collabora · Collabora Online

René De Sain

Publicado

2023-05-31

Atualizado

2023-06-08

CVE-2023-34088

CVSS v3.1

8.7

Alta

Vetor

AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Collabora Online versions prior to 22.05.13 Collabora Online versions prior to 21.11.9.1 Collabora Online versions prior to 6.4.27

Description A stored cross-site scripting (XSS) issue was found in Collabora Online. An attacker could create a document with an XSS payload as a document name. If an administrator opened the admin console and navigated to the history page, the document name was injected as unescaped HTML and executed as a script inside the context of the admin console. This could lead to the leak of the administrator JSON web token (JWT) used for the websocket connection.

Recommendations For Collabora Online versions prior to 22.05.13, upgrade to Collabora Online 22.05.13 or higher to receive a patch. For Collabora Online versions prior to 21.11.9.1, upgrade to Collabora Online 21.11.9.1 or higher to receive a patch. For Collabora Online versions prior to 6.4.27, upgrade to Collabora Online 6.4.27 or higher to receive a patch.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2023-34088

GHSA-7582-PWFH-3PWR

Produtos afetados

Collabora Online

PT-2023-24661 · Collabora · Collabora Online

CVE-2023-34088

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5