CVE-2022-39241

Discourse is a platform for community discussion. A malicious admin could use this vulnerability to perform port enumeration on the local host or other hosts on the internal network, as well as against hosts on the Internet. Latest `stable`, `beta`, and `test-passed` versions are now patched. As a workaround, self-hosters can use `DISCOURSE_BLOCKED_IP_BLOCKS` env var (which overrides `blocked_ip_blocks` setting) to stop webhooks from accessing private IPs.

CVSS v3 7.6 HIGH

7.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr	Third Party Advisory
https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:discourse:discourse::::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta1::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta10::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta2::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta3::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta4::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta5::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta6::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta7::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta8::::::
	cpe:2.3:a:discourse:discourse:2.9.0:beta9::::::

History

21 Nov 2024, 07:17

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~4.9~~	v2 : unknown v3 : 7.6
References	~~() https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr - Third Party Advisory~~	() https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr - Third Party Advisory

04 Nov 2022, 15:37

Type	Values Removed	Values Added
CWE		CWE-918
References	~~(CONFIRM) https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr -~~	(CONFIRM) https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr - Third Party Advisory
CPE		cpe:2.3:a:discourse:discourse:2.9.0:beta9:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta7:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta1:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta4:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta8:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta10:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta3:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta2:::::: cpe:2.3:a:discourse:discourse:2.9.0:beta6:::::: cpe:2.3:a:discourse:discourse:::::::: cpe:2.3:a:discourse:discourse:2.9.0:beta5::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.9

02 Nov 2022, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-11-02 17:15

Updated : 2024-11-21 07:17

NVD link : CVE-2022-39241

Mitre link : CVE-2022-39241

CVE.ORG link : CVE-2022-39241

JSON object : View

Products Affected

discourse

discourse

CWE

CWE-918

Server-Side Request Forgery (SSRF)

7.6 /10