PT-2024-22332 · Drawio+1 · Drawio+1
Gnaegi
·
Published
2024-03-11
·
Updated
2024-03-12
·
CVE-2024-28198
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
OpenOlat versions prior to 18.1.6
OpenOlat versions prior to 18.2.2
Description
OpenOlat is an open source web-based e-learning platform for teaching, learning, assessment and communication. By manually manipulating http requests when using the draw.io integration, it is possible to read arbitrary files as the configured system user and perform Server-Side Request Forgery (SSRF).
Recommendations
For versions prior to 18.1.6, upgrade to the latest version of 18.1.x.
For versions prior to 18.2.2, upgrade to the latest version of 18.2.x.
As a temporary workaround, consider disabling the Draw.io module or the entire REST API to secure the system.
Exploit
Fix
XXE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openolat
Drawio