CVE-2024-45031
Apache Syncope: Stored XSS in Console and Enduser
Severity Score
"-"
*CVSS v-
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
When editing objects in the Syncope Console, incomplete HTML tags could be used to bypass HTML sanitization. This made it possible to inject stored XSS payloads which would trigger for other users during ordinary usage of the application.
XSS payloads could also be injected in Syncope Enduser when editing “Personal Information” or “User Requests”: such payloads would trigger for administrators in Syncope Console, thus enabling session hijacking.
Users are recommended to upgrade to version 3.0.9, which fixes this issue.
*Credits:
Kasper Karlsson, Omegapoint, Pontus Hanssen, Omegapoint
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-08-21 CVE Reserved
- 2024-10-24 CVE Published
- 2024-10-24 CVE Updated
- 2024-10-25 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://lists.apache.org/thread/fn567pfmo3s55ofkc42drz8b4kgbhp9m | 2024-10-24 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apache Software Foundation Search vendor "Apache Software Foundation" | Apache Syncope Search vendor "Apache Software Foundation" for product "Apache Syncope" | >= 2.1.0 <= 2.1.14 Search vendor "Apache Software Foundation" for product "Apache Syncope" and version " >= 2.1.0 <= 2.1.14" | en |
Affected
| ||||||
| Apache Software Foundation Search vendor "Apache Software Foundation" | Apache Syncope Search vendor "Apache Software Foundation" for product "Apache Syncope" | >= 3.0.0 <= 3.0.8 Search vendor "Apache Software Foundation" for product "Apache Syncope" and version " >= 3.0.0 <= 3.0.8" | en |
Affected
| ||||||