CVE-2023-31134

Tauri Open Redirect Vulnerability Possibly Exposes IPC to External Sites

Severity Score

5.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Tauri is software for building applications for multi-platform deployment. The Tauri IPC is usually strictly isolated from external websites, but in versions 1.0.0 until 1.0.9, 1.1.0 until 1.1.4, and 1.2.0 until 1.2.5, the isolation can be bypassed by redirecting an existing Tauri window to an external website. This is either possible by an application implementing a feature for users to visit
arbitrary websites or due to a bug allowing the open redirect. This allows the external website access to the IPC layer and therefore to all configured and exposed Tauri API endpoints and application specific implemented Tauri commands. This issue has been patched in versions 1.0.9, 1.1.4, and 1.2.5. As a workaround, prevent arbitrary input in redirect features and/or only allow trusted websites access to the IPC.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-04-24 CVE Reserved
2023-05-09 CVE Published
2024-08-02 CVE Updated
2024-08-13 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

CAPEC

References (6)

URL	Tag	Source
https://github.com/tauri-apps/tauri/releases/tag/tauri-v1.0.9	Release Notes
https://github.com/tauri-apps/tauri/releases/tag/tauri-v1.1.4	Release Notes
https://github.com/tauri-apps/tauri/releases/tag/tauri-v1.2.5	Release Notes

URL	Date	SRC

URL	Date	SRC
https://www.github.com/tauri-apps/tauri/commit/58ea0b45268dbd46cbac0ebb0887353d057ca767	2023-05-16
https://www.github.com/tauri-apps/tauri/commit/fa90214b052b1a5d38d54fbf1ca422b4c37cfd1f	2023-05-16

URL	Date	SRC
https://github.com/tauri-apps/tauri/security/advisories/GHSA-4wm2-cwcf-wwvp	2023-05-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Tauri Search vendor "Tauri"		Tauri Search vendor "Tauri" for product "Tauri"				>= 1.0.0 < 1.0.9 Search vendor "Tauri" for product "Tauri" and version " >= 1.0.0 < 1.0.9"		-		Affected
Tauri Search vendor "Tauri"		Tauri Search vendor "Tauri" for product "Tauri"				>= 1.1.0 < 1.1.4 Search vendor "Tauri" for product "Tauri" and version " >= 1.1.0 < 1.1.4"		-		Affected
Tauri Search vendor "Tauri"		Tauri Search vendor "Tauri" for product "Tauri"				>= 1.2.0 < 1.2.5 Search vendor "Tauri" for product "Tauri" and version " >= 1.2.0 < 1.2.5"		-		Affected