CVE-2024-7394

Stored XSS in getAttributeSetName()

Severity Score

1.8

*CVSS v4

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName(). A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVSS v3.1 rank of 2 with vector AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator and a CVSS v4.0 rank of 1.8 with vector CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N . Thanks, m3dium for reporting.

*Credits: m3dium

CVSS Scores

ConcreteCMSv4 1.8

Attack Vector

Network

Attack Complexity

High

Attack Requirements

None

Privileges Required

High

User Interaction

Active

System

Vulnerable | Subsequent

Confidentiality

Low

None

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-01 CVE Reserved
2024-08-08 CVE Published
2024-08-09 CVE Updated
2024-08-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

CAPEC-592: Stored XSS

References (4)

URL	Tag	Source
https://documentation.concretecms.org/9-x/developers/introduction/version-history/933-release-notes?pk_vid=e367a434ef4830491723055753d52041
https://documentation.concretecms.org/developers/introduction/version-history/8518-release-notes?pk_vid=e367a434ef4830491723055758d52041
https://github.com/concretecms/concretecms/commit/c08d9671cec4e7afdabb547339c4bc0bed8eab06
https://github.com/concretecms/concretecms/pull/12166

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Concrete CMS Search vendor "Concrete CMS"		Concrete CMS Search vendor "Concrete CMS" for product "Concrete CMS"				>= 9.0.0 < 9.3.3 Search vendor "Concrete CMS" for product "Concrete CMS" and version " >= 9.0.0 < 9.3.3"		en		Affected
Concrete CMS Search vendor "Concrete CMS"		Concrete CMS Search vendor "Concrete CMS" for product "Concrete CMS"				>= 5.0.0 < 8.5.18 Search vendor "Concrete CMS" for product "Concrete CMS" and version " >= 5.0.0 < 8.5.18"		en		Affected