CVE-2023-40183

DataEase is an open source data visualization and analysis tool. Prior to version 1.18.11, DataEase has a vulnerability that allows an attacker to to obtain user cookies. The program only uses the `ImageIO.read()` method to determine whether the file is an image file or not. There is no whitelisting restriction on file suffixes. This allows the attacker to synthesize the attack code into an image for uploading and change the file extension to html. The attacker may steal user cookies by accessing links. The vulnerability has been fixed in v1.18.11. There are no known workarounds.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dataease:dataease:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:18

Type Values Removed Values Added
References () https://github.com/dataease/dataease/commit/826513053146721a2b3e09a9c9d3ea41f8f10569 - Patch () https://github.com/dataease/dataease/commit/826513053146721a2b3e09a9c9d3ea41f8f10569 - Patch
References () https://github.com/dataease/dataease/releases/tag/v1.18.11 - Release Notes () https://github.com/dataease/dataease/releases/tag/v1.18.11 - Release Notes
References () https://github.com/dataease/dataease/security/advisories/GHSA-w2r4-2r4w-fjxv - Exploit () https://github.com/dataease/dataease/security/advisories/GHSA-w2r4-2r4w-fjxv - Exploit
CVSS v2 : unknown
v3 : 5.3
v2 : unknown
v3 : 7.5

26 Sep 2023, 14:59

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.3
First Time Dataease
Dataease dataease
CPE cpe:2.3:a:dataease:dataease:*:*:*:*:*:*:*:*
References (MISC) https://github.com/dataease/dataease/security/advisories/GHSA-w2r4-2r4w-fjxv - (MISC) https://github.com/dataease/dataease/security/advisories/GHSA-w2r4-2r4w-fjxv - Exploit
References (MISC) https://github.com/dataease/dataease/releases/tag/v1.18.11 - (MISC) https://github.com/dataease/dataease/releases/tag/v1.18.11 - Release Notes
References (MISC) https://github.com/dataease/dataease/commit/826513053146721a2b3e09a9c9d3ea41f8f10569 - (MISC) https://github.com/dataease/dataease/commit/826513053146721a2b3e09a9c9d3ea41f8f10569 - Patch

21 Sep 2023, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-21 15:15

Updated : 2024-11-21 08:18


NVD link : CVE-2023-40183

Mitre link : CVE-2023-40183

CVE.ORG link : CVE-2023-40183


JSON object : View

Products Affected

dataease

  • dataease
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type