CVE-2021-43448

ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Improper Input Validation. A lack of input validation can allow an attacker to spoof the names of users who interact with a document, if the document id is known.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.6 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/ONLYOFFICE/server	Third Party Advisory
https://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/	Exploit Mitigation Third Party Advisory
https://www.onlyoffice.com/	Product Vendor Advisory
https://github.com/ONLYOFFICE/server	Third Party Advisory
https://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/	Exploit Mitigation Third Party Advisory
https://www.onlyoffice.com/	Product Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:onlyoffice:server:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:29

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-01-23 15:15

Updated : 2024-11-21 06:29

NVD link : CVE-2021-43448

Mitre link : CVE-2021-43448

CVE.ORG link : CVE-2021-43448

JSON object : View

Products Affected

onlyoffice

server

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2021-43448", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.6}]}, "published": "2023-01-23T15:15:13.450", "references": [{"url": "https://github.com/ONLYOFFICE/server", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.onlyoffice.com/", "tags": ["Product", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/ONLYOFFICE/server", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/", "tags": ["Exploit", "Mitigation", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.onlyoffice.com/", "tags": ["Product", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "ONLYOFFICE all versions as of 2021-11-08 is vulnerable to Improper Input Validation. A lack of input validation can allow an attacker to spoof the names of users who interact with a document, if the document id is known."}, {"lang": "es", "value": "Todas las versiones de ONLYOFFICE con fecha posterior al 08/11/2021 son vulnerables a una validaci\u00f3n de entrada incorrecta. La falta de validaci\u00f3n de entrada puede permitir que un atacante falsifique los nombres de los usuarios que interact\u00faan con un documento, si se conoce la identificaci\u00f3n del documento."}], "lastModified": "2024-11-21T06:29:14.710", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:onlyoffice:server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F20D43B1-2433-412A-8D51-7D04C974D445", "versionEndIncluding": "7.0.0.49"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}