cvelistv5 - cve-2024-45745

CVE-2024-45745 (GCVE-0-2024-45745)

Vulnerability from cvelistv5 – Published: 2024-09-27 15:57 – Updated: 2024-09-27 17:43

Title

TopQuadrant TopBraid EDG JavaScript console XXE

Summary

TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).

Severity ?

5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

CWE

CWE-611 - Improper Restriction of XML External Entity Reference

Assigner

cisa-cg

References

URL

Tags

	https://raw.githubusercontent.com/cisagov/CSAF/de…
	https://www.topquadrant.com/wp-content/uploads/20…

Impacted products

	Vendor	Product	Version
	TopQuadrant	TopBraid EDG	Affected: 0 , < 8.0.1 (custom) Unaffected: 8.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-45745",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-27T17:43:16.632957Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-27T17:43:27.032Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "TopBraid EDG",
          "vendor": "TopQuadrant",
          "versions": [
            {
              "lessThan": "8.0.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            },
            {
              "status": "unaffected",
              "version": "8.0.1"
            }
          ]
        }
      ],
      "datePublic": "2024-09-10T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eTopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).\u003c/p\u003e"
            }
          ],
          "value": "TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721)."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-611",
              "description": "CWE-611 Improper Restriction of XML External Entity Reference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-27T16:50:23.194Z",
        "orgId": "9119a7d8-5eab-497f-8521-727c672e3725",
        "shortName": "cisa-cg"
      },
      "references": [
        {
          "name": "url",
          "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
        },
        {
          "name": "url",
          "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "TopQuadrant TopBraid EDG JavaScript console XXE",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9119a7d8-5eab-497f-8521-727c672e3725",
    "assignerShortName": "cisa-cg",
    "cveId": "CVE-2024-45745",
    "datePublished": "2024-09-27T15:57:59.876Z",
    "dateReserved": "2024-09-05T23:12:56.519Z",
    "dateUpdated": "2024-09-27T17:43:27.032Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).\"}, {\"lang\": \"es\", \"value\": \"TopQuadrant TopBraid EDG anterior a la versi\\u00f3n 8.0.1 permite que un atacante autenticado cargue un archivo DTD XML y ejecute JavaScript para leer archivos locales o acceder a URL (XXE). Corregido en la versi\\u00f3n 8.0.1 (correcci\\u00f3n de error: TBS-6721).\"}]",
      "id": "CVE-2024-45745",
      "lastModified": "2024-09-30T12:45:57.823",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"9119a7d8-5eab-497f-8521-727c672e3725\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N\", \"baseScore\": 5.0, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.1, \"impactScore\": 1.4}]}",
      "published": "2024-09-27T16:15:05.037",
      "references": "[{\"url\": \"https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json\", \"source\": \"9119a7d8-5eab-497f-8521-727c672e3725\"}, {\"url\": \"https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt\", \"source\": \"9119a7d8-5eab-497f-8521-727c672e3725\"}]",
      "sourceIdentifier": "9119a7d8-5eab-497f-8521-727c672e3725",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"9119a7d8-5eab-497f-8521-727c672e3725\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-611\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-45745\",\"sourceIdentifier\":\"9119a7d8-5eab-497f-8521-727c672e3725\",\"published\":\"2024-09-27T16:15:05.037\",\"lastModified\":\"2025-09-22T17:17:23.523\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).\"},{\"lang\":\"es\",\"value\":\"TopQuadrant TopBraid EDG anterior a la versi\u00f3n 8.0.1 permite que un atacante autenticado cargue un archivo DTD XML y ejecute JavaScript para leer archivos locales o acceder a URL (XXE). Corregido en la versi\u00f3n 8.0.1 (correcci\u00f3n de error: TBS-6721).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"9119a7d8-5eab-497f-8521-727c672e3725\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N\",\"baseScore\":5.0,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.1,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"9119a7d8-5eab-497f-8521-727c672e3725\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-611\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:topquadrant:topbraid_edg:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"8.0.1\",\"matchCriteriaId\":\"8A0E7462-3ABE-4327-83EE-7CE15E1D6023\"}]}]}],\"references\":[{\"url\":\"https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json\",\"source\":\"9119a7d8-5eab-497f-8521-727c672e3725\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt\",\"source\":\"9119a7d8-5eab-497f-8521-727c672e3725\",\"tags\":[\"Release Notes\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-45745\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-27T17:43:16.632957Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-27T17:43:21.310Z\"}}], \"cna\": {\"title\": \"TopQuadrant TopBraid EDG JavaScript console XXE\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"TopQuadrant\", \"product\": \"TopBraid EDG\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"8.0.1\", \"versionType\": \"custom\"}, {\"status\": \"unaffected\", \"version\": \"8.0.1\"}], \"defaultStatus\": \"unknown\"}], \"datePublic\": \"2024-09-10T00:00:00.000Z\", \"references\": [{\"url\": \"https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json\", \"name\": \"url\"}, {\"url\": \"https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt\", \"name\": \"url\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eTopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-611\", \"description\": \"CWE-611 Improper Restriction of XML External Entity Reference\"}]}], \"providerMetadata\": {\"orgId\": \"9119a7d8-5eab-497f-8521-727c672e3725\", \"shortName\": \"cisa-cg\", \"dateUpdated\": \"2024-09-27T16:50:23.194Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-45745\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-09-27T17:43:27.032Z\", \"dateReserved\": \"2024-09-05T23:12:56.519Z\", \"assignerOrgId\": \"9119a7d8-5eab-497f-8521-727c672e3725\", \"datePublished\": \"2024-09-27T15:57:59.876Z\", \"assignerShortName\": \"cisa-cg\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

VA-24-254-02

Vulnerability from csaf_cisa - Published: 2024-09-10 16:03 - Updated: 2025-02-13 20:00

Summary

TopQuadrant TopBraid EDG Insecure External Password Storage and XXE Vulnerabilities

Notes

Risk Evaluation

TopQuadrant TopBraid EDG stores credentials for external services insecurely and processes untrusted XML entities. An authenticated attacker could obtain credentials for remote services, read local files, or access URLs.

Legal Notice

All information products included in https://github.com/cisagov/CSAF/tree/develop/csaf_files/IT/white are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Countries and Areas Deployed

Worldwide

Company Headquarters Location

United States

Critical Infrastructure Sectors

Information Technology

Recommended Practices

Upgrade to TopQuadrant TopBraid EDG 8.0.1 and use the Hashicorp Vault integration.

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "summary",
        "text": "TopQuadrant TopBraid EDG stores credentials for external services insecurely and processes untrusted XML entities. An authenticated attacker could obtain credentials for remote services, read local files, or access URLs.",
        "title": "Risk Evaluation"
      },
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://github.com/cisagov/CSAF/tree/develop/csaf_files/IT/white are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "other",
        "text": "Worldwide",
        "title": "Countries and Areas Deployed"
      },
      {
        "category": "other",
        "text": "United States",
        "title": "Company Headquarters Location"
      },
      {
        "category": "other",
        "text": "Information Technology",
        "title": "Critical Infrastructure Sectors"
      },
      {
        "category": "general",
        "text": "Upgrade to TopQuadrant TopBraid EDG 8.0.1 and use the Hashicorp Vault integration.",
        "title": "Recommended Practices"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "https://www.cisa.gov/report",
      "issuing_authority": "CISA",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "Vulnerability Advisory VA-24-254-02 CSAF",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
      }
    ],
    "title": "TopQuadrant TopBraid EDG Insecure External Password Storage and XXE Vulnerabilities",
    "tracking": {
      "current_release_date": "2025-02-13T20:00:00Z",
      "generator": {
        "date": "2025-02-13T20:11:59Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.5.18"
        }
      },
      "id": "VA-24-254-02",
      "initial_release_date": "2024-09-10T16:03:00Z",
      "revision_history": [
        {
          "date": "2024-09-10T16:03:00Z",
          "number": "1.0.0",
          "summary": "Initial publication"
        },
        {
          "date": "2024-10-03T10:00:00Z",
          "number": "1.0.1",
          "summary": "Correct reporter affiliation from RAF to FAST"
        },
        {
          "date": "2024-11-14T01:00:00Z",
          "number": "1.0.2",
          "summary": "Fix acknowledgements, section headings, version range"
        },
        {
          "date": "2024-11-27T17:00:00Z",
          "number": "1.0.3",
          "summary": "Added Hashicorp Vault mitigation, Recommended Practices section, language"
        },
        {
          "date": "2025-02-13T20:00:00Z",
          "number": "1.0.4",
          "summary": "Added mitigations for CVE-2024-45744"
        }
      ],
      "status": "final",
      "version": "1.0.4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.1.3",
                "product": {
                  "name": "TopQuadrant TopBraid EDG 7.1.3",
                  "product_id": "CSAFPID-0001"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.0.1",
                "product": {
                  "name": "TopQuadrant TopBraid EDG \u003c8.0.1",
                  "product_id": "CSAFPID-0002"
                }
              },
              {
                "category": "product_version",
                "name": "8.0.1",
                "product": {
                  "name": "TopQuadrant TopBraid EDG 8.0.1",
                  "product_id": "CSAFPID-0003"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003e=7.3",
                "product": {
                  "name": "TopQuadrant TopBraid EDG \u003e= 7.3.0",
                  "product_id": "CSAFPID-0004"
                }
              },
              {
                "category": "product_version",
                "name": "8.3.0",
                "product": {
                  "name": "TopQuadrant TopBraid EDG 8.3.0",
                  "product_id": "CSAFPID-0005"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.3.0",
                "product": {
                  "name": "TopQuadrant TopBraid EDG \u003c 8.3.0",
                  "product_id": "CSAFPID-0006"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003e=8.3.0",
                "product": {
                  "name": "TopQuadrant TopBraid EDG \u003e= 8.3.0",
                  "product_id": "CSAFPID-0007"
                }
              },
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "TopQuadrant TopBraid EDG",
                  "product_id": "CSAFPID-0008"
                }
              }
            ],
            "category": "product_name",
            "name": "TopBraid EDG"
          }
        ],
        "category": "vendor",
        "name": "TopQuadrant"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Donald Macary"
          ],
          "organization": "CISA Federal Attack Surface Testing"
        }
      ],
      "cve": "CVE-2024-45744",
      "cwe": {
        "id": "CWE-257",
        "name": "Storing Passwords in a Recoverable Format"
      },
      "notes": [
        {
          "category": "summary",
          "text": "TopQuadrant TopBraid EDG stores external credentials insecurely. An authenticated attacker with file system access can read edg-setup.properites and obtain the secret to decrypt external passwords stored in edg-vault.properties. An authenticated attacker could gain file system access using a separate vulnerability such as CVE-2024-45745. At least version 7.1.3 is affected. Version 7.3 adds HashiCorp Vault integration that does not store external passwords locally. Version 8.3.0 warns when using plain text secrets.",
          "title": "Description"
        },
        {
          "category": "details",
          "text": "SSVCv2/E:P/A:N/T:P/2024-09-10T16:16:26Z/",
          "title": "SSVC"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0008"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "raw.githubusercontent.com",
          "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
        },
        {
          "category": "external",
          "summary": "www.topquadrant.com",
          "url": "https://www.topquadrant.com/doc/latest/reference/PasswordManagementAdminPage.html"
        },
        {
          "category": "external",
          "summary": "www.topquadrant.com",
          "url": "https://www.topquadrant.com/doc/latest/administrator_guide/edg_installation_and_authentication/hashicorp_integration.html"
        },
        {
          "category": "external",
          "summary": "www.topquadrant.com",
          "url": "https://www.topquadrant.com/release-note/7-3/"
        },
        {
          "category": "external",
          "summary": "www.topquadrant.com",
          "url": "https://www.topquadrant.com/wp-content/uploads/2025/02/changes-8.3.0.txt"
        }
      ],
      "release_date": "2024-09-10T16:00:00Z",
      "remediations": [
        {
          "category": "mitigation",
          "date": "2025-02-10T18:00:00Z",
          "details": "Version 8.3.0 warns when using plain text secrets. (Bug fix: TBS-6854).",
          "product_ids": [
            "CSAFPID-0007",
            "CSAFPID-0001",
            "CSAFPID-0008"
          ],
          "url": "https://www.topquadrant.com/wp-content/uploads/2025/02/changes-8.3.0.txt"
        },
        {
          "category": "mitigation",
          "date": "2022-11-15T18:50:00Z",
          "details": "Use the [Hashicorp Vault](https://www.topquadrant.com/doc/latest/administrator_guide/edg_installation_and_authentication/hashicorp_integration.html) to store credentials. Hashicorp Vault integration was first available in TopBraid EDG [7.3.0](https://www.topquadrant.com/release-note/7-3/).",
          "product_ids": [
            "CSAFPID-0004",
            "CSAFPID-0001",
            "CSAFPID-0008"
          ],
          "url": "https://www.topquadrant.com/doc/latest/administrator_guide/edg_installation_and_authentication/hashicorp_integration.html"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001"
          ]
        }
      ],
      "title": "TopQuadrant TopBraid EDG password manager stores external credentials insecurely"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Donald Macary",
            "Grant Hume"
          ],
          "organization": "CISA Federal Attack Surface Testing"
        }
      ],
      "cve": "CVE-2024-45745",
      "cwe": {
        "id": "CWE-611",
        "name": "Improper Restriction of XML External Entity Reference"
      },
      "notes": [
        {
          "category": "summary",
          "text": "TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).",
          "title": "Description"
        },
        {
          "category": "details",
          "text": "SSVCv2/E:P/A:N/T:P/2024-09-10T15:30:07Z/",
          "title": "SSVC"
        },
        {
          "category": "description",
          "text": "EDG 8.0 and earlier are susceptible to XXE injection if a malicious XML DTD is uploaded to the Script Editor. An authenticated user could read arbitrary system files or make web requests as the EDG server. This has been fixed in version 8.0.1 (Bug fix: TBS-6721: Fix a number of XXE vulnerabilities).",
          "title": "Vendor statement"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-0003"
        ],
        "known_affected": [
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "raw.githubusercontent.com",
          "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
        },
        {
          "category": "external",
          "summary": "www.topquadrant.com",
          "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
        }
      ],
      "release_date": "2024-09-10T16:00:00Z",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Fixed in 8.0.1 (bug fix: TBS-6721).",
          "product_ids": [
            "CSAFPID-0002"
          ],
          "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
        },
        {
          "category": "vendor_fix",
          "details": "Fixed in 8.0.1 (bug fix: TBS-6721).",
          "product_ids": [
            "CSAFPID-0003"
          ],
          "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0002"
          ]
        }
      ],
      "title": "TopQuadrant TopBraid EDG JavaScript console XXE"
    }
  ]
}

GHSA-P52V-VCVW-FCMG

Vulnerability from github – Published: 2024-09-27 18:32 – Updated: 2024-09-27 18:32

Details

Severity ?

5.0 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-45745"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-611"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-09-27T16:15:05Z",
    "severity": "MODERATE"
  },
  "details": "TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721).",
  "id": "GHSA-p52v-vcvw-fcmg",
  "modified": "2024-09-27T18:32:25Z",
  "published": "2024-09-27T18:32:25Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45745"
    },
    {
      "type": "WEB",
      "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
    },
    {
      "type": "WEB",
      "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2024-45745

Vulnerability from fkie_nvd - Published: 2024-09-27 16:15 - Updated: 2025-09-22 17:17

Severity ?

5.0 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Summary

References

	URL	Tags
	9119a7d8-5eab-497f-8521-727c672e3725	https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json	Third Party Advisory
	9119a7d8-5eab-497f-8521-727c672e3725	https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt	Release Notes

Impacted products

	Vendor	Product	Version
	topquadrant	topbraid_edg	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:topquadrant:topbraid_edg:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A0E7462-3ABE-4327-83EE-7CE15E1D6023",
              "versionEndExcluding": "8.0.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML DTD file and execute JavaScript to read local files or access URLs (XXE). Fixed in 8.0.1 (bug fix: TBS-6721)."
    },
    {
      "lang": "es",
      "value": "TopQuadrant TopBraid EDG anterior a la versi\u00f3n 8.0.1 permite que un atacante autenticado cargue un archivo DTD XML y ejecute JavaScript para leer archivos locales o acceder a URL (XXE). Corregido en la versi\u00f3n 8.0.1 (correcci\u00f3n de error: TBS-6721)."
    }
  ],
  "id": "CVE-2024-45745",
  "lastModified": "2025-09-22T17:17:23.523",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.1,
        "impactScore": 1.4,
        "source": "9119a7d8-5eab-497f-8521-727c672e3725",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-09-27T16:15:05.037",
  "references": [
    {
      "source": "9119a7d8-5eab-497f-8521-727c672e3725",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2024/va-24-254-02.json"
    },
    {
      "source": "9119a7d8-5eab-497f-8521-727c672e3725",
      "tags": [
        "Release Notes"
      ],
      "url": "https://www.topquadrant.com/wp-content/uploads/2024/06/changelog-8.0.1.txt"
    }
  ],
  "sourceIdentifier": "9119a7d8-5eab-497f-8521-727c672e3725",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-611"
        }
      ],
      "source": "9119a7d8-5eab-497f-8521-727c672e3725",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-45745 (GCVE-0-2024-45745)

VA-24-254-02

GHSA-P52V-VCVW-FCMG

FKIE_CVE-2024-45745

Tags

Sightings

Nomenclature