Search criteria
5 vulnerabilities found for Retool by Retool
CVE-2025-47424 (GCVE-0-2025-47424)
Vulnerability from cvelistv5 – Published: 2025-05-09 00:00 – Updated: 2025-05-12 19:32
VLAI?
Summary
Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host header can be manipulated.
Severity ?
CWE
- CWE-348 - Use of Less Trusted Source
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Retool | Retool |
Affected:
3.18.1 , ≤ 3.18.23
(custom)
Affected: 3.20.1 , ≤ 3.20.18 (custom) Affected: 3.22.1 , ≤ 3.22.21 (custom) Affected: 3.24.1 , ≤ 3.24.22 (custom) Affected: 3.26.4 , ≤ 3.26.14 (custom) Affected: 3.28.3 , ≤ 3.28.15 (custom) Affected: 3.30.1 , ≤ 3.30.15 (custom) Affected: 3.32.1 , ≤ 3.32.12 (custom) Affected: 3.33.1-stable , ≤ 3.33.37-stable (custom) Affected: 3.52.1-stable , ≤ 3.52.28-stable (custom) Affected: 3.75.1-stable , ≤ 3.75.25-stable (custom) Affected: 3.114.1-stable , ≤ 3.114.22-stable (custom) Affected: 3.148.1-stable , ≤ 3.148.22-stable (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-47424",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-12T19:32:17.698346Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-05-12T19:32:24.725Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Retool",
"vendor": "Retool",
"versions": [
{
"lessThanOrEqual": "3.18.23",
"status": "affected",
"version": "3.18.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.20.18",
"status": "affected",
"version": "3.20.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.22.21",
"status": "affected",
"version": "3.22.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.24.22",
"status": "affected",
"version": "3.24.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.26.14",
"status": "affected",
"version": "3.26.4",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.28.15",
"status": "affected",
"version": "3.28.3",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.30.15",
"status": "affected",
"version": "3.30.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.32.12",
"status": "affected",
"version": "3.32.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.33.37-stable",
"status": "affected",
"version": "3.33.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.52.28-stable",
"status": "affected",
"version": "3.52.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.75.25-stable",
"status": "affected",
"version": "3.75.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.114.22-stable",
"status": "affected",
"version": "3.114.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.148.22-stable",
"status": "affected",
"version": "3.148.1-stable",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.18.23",
"versionStartIncluding": "3.18.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.20.18",
"versionStartIncluding": "3.20.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.22.21",
"versionStartIncluding": "3.22.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.24.22",
"versionStartIncluding": "3.24.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.26.14",
"versionStartIncluding": "3.26.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.28.15",
"versionStartIncluding": "3.28.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.30.15",
"versionStartIncluding": "3.30.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.32.12",
"versionStartIncluding": "3.32.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.33.37-stable",
"versionStartIncluding": "3.33.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.52.28-stable",
"versionStartIncluding": "3.52.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.75.25-stable",
"versionStartIncluding": "3.75.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.114.22-stable",
"versionStartIncluding": "3.114.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.148.22-stable",
"versionStartIncluding": "3.148.1-stable",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host header can be manipulated."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L/E:P/RL:O/RC:C",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-348",
"description": "CWE-348 Use of Less Trusted Source",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-09T23:14:37.884Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://docs.retool.com/disclosures/cve-2025-47424"
}
],
"x_generator": {
"engine": "enrichogram 0.0.1"
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2025-47424",
"datePublished": "2025-05-09T00:00:00.000Z",
"dateReserved": "2025-05-07T00:00:00.000Z",
"dateUpdated": "2025-05-12T19:32:24.725Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-42056 (GCVE-0-2024-42056)
Vulnerability from cvelistv5 – Published: 2024-08-22 00:00 – Updated: 2025-03-13 18:02
VLAI?
Summary
Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with "Use" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1.
Severity ?
6.5 (Medium)
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-42056",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-22T19:57:09.998657Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-352",
"description": "CWE-352 Cross-Site Request Forgery (CSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-13T18:02:12.917Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with \"Use\" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-22T00:28:57.078Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://docs.retool.com/releases"
},
{
"url": "https://docs.retool.com/disclosures/cve-2024-42056"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2024-42056",
"datePublished": "2024-08-22T00:00:00.000Z",
"dateReserved": "2024-07-28T00:00:00.000Z",
"dateUpdated": "2025-03-13T18:02:12.917Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-47424 (GCVE-0-2025-47424)
Vulnerability from nvd – Published: 2025-05-09 00:00 – Updated: 2025-05-12 19:32
VLAI?
Summary
Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host header can be manipulated.
Severity ?
CWE
- CWE-348 - Use of Less Trusted Source
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Retool | Retool |
Affected:
3.18.1 , ≤ 3.18.23
(custom)
Affected: 3.20.1 , ≤ 3.20.18 (custom) Affected: 3.22.1 , ≤ 3.22.21 (custom) Affected: 3.24.1 , ≤ 3.24.22 (custom) Affected: 3.26.4 , ≤ 3.26.14 (custom) Affected: 3.28.3 , ≤ 3.28.15 (custom) Affected: 3.30.1 , ≤ 3.30.15 (custom) Affected: 3.32.1 , ≤ 3.32.12 (custom) Affected: 3.33.1-stable , ≤ 3.33.37-stable (custom) Affected: 3.52.1-stable , ≤ 3.52.28-stable (custom) Affected: 3.75.1-stable , ≤ 3.75.25-stable (custom) Affected: 3.114.1-stable , ≤ 3.114.22-stable (custom) Affected: 3.148.1-stable , ≤ 3.148.22-stable (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-47424",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-12T19:32:17.698346Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-05-12T19:32:24.725Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Retool",
"vendor": "Retool",
"versions": [
{
"lessThanOrEqual": "3.18.23",
"status": "affected",
"version": "3.18.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.20.18",
"status": "affected",
"version": "3.20.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.22.21",
"status": "affected",
"version": "3.22.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.24.22",
"status": "affected",
"version": "3.24.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.26.14",
"status": "affected",
"version": "3.26.4",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.28.15",
"status": "affected",
"version": "3.28.3",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.30.15",
"status": "affected",
"version": "3.30.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.32.12",
"status": "affected",
"version": "3.32.1",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.33.37-stable",
"status": "affected",
"version": "3.33.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.52.28-stable",
"status": "affected",
"version": "3.52.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.75.25-stable",
"status": "affected",
"version": "3.75.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.114.22-stable",
"status": "affected",
"version": "3.114.1-stable",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.148.22-stable",
"status": "affected",
"version": "3.148.1-stable",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.18.23",
"versionStartIncluding": "3.18.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.20.18",
"versionStartIncluding": "3.20.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.22.21",
"versionStartIncluding": "3.22.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.24.22",
"versionStartIncluding": "3.24.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.26.14",
"versionStartIncluding": "3.26.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.28.15",
"versionStartIncluding": "3.28.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.30.15",
"versionStartIncluding": "3.30.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.32.12",
"versionStartIncluding": "3.32.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.33.37-stable",
"versionStartIncluding": "3.33.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.52.28-stable",
"versionStartIncluding": "3.52.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.75.25-stable",
"versionStartIncluding": "3.75.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.114.22-stable",
"versionStartIncluding": "3.114.1-stable",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "3.148.22-stable",
"versionStartIncluding": "3.148.1-stable",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host header can be manipulated."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L/E:P/RL:O/RC:C",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-348",
"description": "CWE-348 Use of Less Trusted Source",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-09T23:14:37.884Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://docs.retool.com/disclosures/cve-2025-47424"
}
],
"x_generator": {
"engine": "enrichogram 0.0.1"
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2025-47424",
"datePublished": "2025-05-09T00:00:00.000Z",
"dateReserved": "2025-05-07T00:00:00.000Z",
"dateUpdated": "2025-05-12T19:32:24.725Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2024-42056 (GCVE-0-2024-42056)
Vulnerability from nvd – Published: 2024-08-22 00:00 – Updated: 2025-03-13 18:02
VLAI?
Summary
Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with "Use" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1.
Severity ?
6.5 (Medium)
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-42056",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-22T19:57:09.998657Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-352",
"description": "CWE-352 Cross-Site Request Forgery (CSRF)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-13T18:02:12.917Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with \"Use\" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-22T00:28:57.078Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://docs.retool.com/releases"
},
{
"url": "https://docs.retool.com/disclosures/cve-2024-42056"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2024-42056",
"datePublished": "2024-08-22T00:00:00.000Z",
"dateReserved": "2024-07-28T00:00:00.000Z",
"dateUpdated": "2025-03-13T18:02:12.917Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
FKIE_CVE-2024-42056
Vulnerability from fkie_nvd - Published: 2024-08-22 01:15 - Updated: 2025-03-13 18:15
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with "Use" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://docs.retool.com/disclosures/cve-2024-42056 | Vendor Advisory | |
| cve@mitre.org | https://docs.retool.com/releases | Release Notes |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:retool:retool:*:*:*:*:*:*:*:*",
"matchCriteriaId": "094346BD-34B2-4F5B-9F13-E30C78932146",
"versionEndIncluding": "3.40.0",
"versionStartIncluding": "3.18.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Retool (self-hosted enterprise) through 3.40.0 inserts resource authentication credentials into sent data. Credentials for users with \"Use\" permissions can be discovered (by an authenticated attacker) via the /api/resources endpoint. The earliest affected version is 3.18.1."
},
{
"lang": "es",
"value": "Retool (empresa autohospedada) hasta 3.40.0 inserta credenciales de autenticaci\u00f3n de recursos en los datos enviados. Las credenciales de los usuarios con permisos de \"Uso\" pueden ser descubiertas (por un atacante autenticado) a trav\u00e9s del endpoint /api/resources. La primera versi\u00f3n afectada es la 3.18.1."
}
],
"id": "CVE-2024-42056",
"lastModified": "2025-03-13T18:15:43.603",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2024-08-22T01:15:03.460",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://docs.retool.com/disclosures/cve-2024-42056"
},
{
"source": "cve@mitre.org",
"tags": [
"Release Notes"
],
"url": "https://docs.retool.com/releases"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-352"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}