CVE-2022-31166

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-31166
XWiki Platform Old Core is a core package for XWiki Platform, a generic wiki platform. Starting in versions 11.3.7, 11.0.3, and 12.0RC1, it is possible to exploit a bug in XWikiRights resolution of groups to obtain privilege escalation. More specifically, editing a right with the object editor leads to adding a supplementary empty value to groups which is then resolved as a reference to XWiki.WebHome page. Adding an XWikiGroup xobject to that page then transforms it to a group, any user put in that group would then obtain the privileges related to the edited right. Note that this security issue is normally mitigated by the fact that XWiki.WebHome (and XWiki space in general) should be protected by default for edit rights. The problem has been patched in XWiki 13.10.4 and 14.2RC1 to not consider anymore empty values in XWikiRights. It's possible to work around the problem by setting appropriate rights on XWiki.WebHome page to prevent users to edit it.

8.1 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://github.com/xwiki/xwiki-platform/pull/1800 Patch Third Party Advisory
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g4h6-qp44-wqvx Third Party Advisory
https://jira.xwiki.org/browse/XWIKI-15776 Vendor Advisory
https://jira.xwiki.org/browse/XWIKI-18386 Exploit Permissions Required Vendor Advisory
https://github.com/xwiki/xwiki-platform/pull/1800 Patch Third Party Advisory
https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g4h6-qp44-wqvx Third Party Advisory
https://jira.xwiki.org/browse/XWIKI-15776 Vendor Advisory
https://jira.xwiki.org/browse/XWIKI-18386 Exploit Permissions Required Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*
cpe:2.3:a:xwiki:xwiki:*:*:*:*:*:*:*:*
History

21 Nov 2024, 07:04

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 8.8 		v2 : unknown
v3 : 8.1
References () https://github.com/xwiki/xwiki-platform/pull/1800 - Patch, Third Party Advisory () https://github.com/xwiki/xwiki-platform/pull/1800 - Patch, Third Party Advisory
References () https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g4h6-qp44-wqvx - Third Party Advisory () https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-g4h6-qp44-wqvx - Third Party Advisory
References () https://jira.xwiki.org/browse/XWIKI-15776 - Vendor Advisory () https://jira.xwiki.org/browse/XWIKI-15776 - Vendor Advisory
References () https://jira.xwiki.org/browse/XWIKI-18386 - Exploit, Permissions Required, Vendor Advisory () https://jira.xwiki.org/browse/XWIKI-18386 - Exploit, Permissions Required, Vendor Advisory
Information

Published : 2022-09-07 14:15

Updated : 2024-11-21 07:04

NVD link : CVE-2022-31166

Mitre link : CVE-2022-31166

CVE.ORG link : CVE-2022-31166

JSON object : View

Products Affected

xwiki

  • xwiki
CWE
CWE-269

Improper Privilege Management

NVD-CWE-noinfo

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024