CVE-2020-37044

Name of the Vulnerable Software and Affected Versions OpenCTI version 3.3.1

Description OpenCTI is susceptible to a reflected cross-site scripting (XSS) attack through the /graphql API endpoint. An attacker can inject malicious JavaScript code by sending a specially crafted GET request with a payload in the query string, which then executes in the victim's browser. For example, a request to /graphql?'"--></style></scRipt><scRipt>alert('Raif Berkay')</scRipt> will trigger an alert. The issue was discovered on Linux Mint and Windows 10. The vulnerable parameter is the query string within the GET request to the /graphql endpoint.

Recommendations OpenCTI version 3.3.1 should be updated to a newer version that addresses this issue. As a temporary workaround, consider carefully validating and sanitizing all input received through the /graphql endpoint to prevent the injection of malicious scripts.