PT-2023-26548 · Discourse · Discourse

Jomaxro

Published

2023-07-28

Updated

2024-03-06

CVE-2023-38684

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 3.0.6 of the stable branch Discourse versions prior to 3.1.0.beta7 of the beta and tests-passed branches

Description Discourse is an open source discussion platform. In multiple controller actions, Discourse accepts limit params but does not impose any upper bound on the values being accepted. Without an upper bound, the software may allow arbitrary users to generate DB queries which may end up exhausting the resources on the server.

Recommendations For Discourse versions prior to 3.0.6 of the stable branch, update to version 3.0.6 or later. For Discourse versions prior to 3.1.0.beta7 of the beta and tests-passed branches, update to version 3.1.0.beta7 or later. As a temporary workaround, consider restricting access to the vulnerable controller actions until a patch is applied.

Exploit

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BIT-DISCOURSE-2023-38684

CVE-2023-38684

GHSA-FF7G-XV79-HGMF

Affected Products

Discourse

PT-2023-26548 · Discourse · Discourse

CVE-2023-38684

Weakness Enumeration

Related Identifiers

Affected Products

References · 8