CVE-2024-52812 (GCVE-0-2024-52812)
Vulnerability from cvelistv5 – Published: 2025-03-10 17:52 – Updated: 2025-03-11 20:13
VLAI?
Summary
LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim's browser. Version 2.0.8 fixes the issue.
Severity ?
5.4 (Medium)
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Assigner
References
| URL | Tags | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-52812",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-03-11T20:12:43.168456Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-03-11T20:13:01.144Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "ekuiper",
"vendor": "lf-edge",
"versions": [
{
"status": "affected",
"version": "\u003c 2.0.8"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim\u0027s browser. Version 2.0.8 fixes the issue."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-10T17:52:13.106Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809"
},
{
"name": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824"
},
{
"name": "https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8"
}
],
"source": {
"advisory": "GHSA-6hrw-x7pr-4mp8",
"discovery": "UNKNOWN"
},
"title": "LF Edge eKuiper has Stored XSS in Rules Functionality"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-52812",
"datePublished": "2025-03-10T17:52:13.106Z",
"dateReserved": "2024-11-15T17:11:13.443Z",
"dateUpdated": "2025-03-11T20:13:01.144Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-52812\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-03-10T18:15:29.207\",\"lastModified\":\"2025-03-10T18:15:29.207\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim\u0027s browser. Version 2.0.8 fixes the issue.\"},{\"lang\":\"es\",\"value\":\"LF Edge eKuiper es un motor de procesamiento de flujo y an\u00e1lisis de datos de Internet de las cosas. Antes de la versi\u00f3n 2.0.8, un usuario con derechos para modificar el servicio (por ejemplo, el rol kuiperUser) puede inyectar un payload de cross-site scripting en el par\u00e1metro `id` de la regla. Luego, despu\u00e9s de que cualquier usuario con acceso a este servicio (por ejemplo, administrador) intente realizar modificaciones con la regla (actualizar, ejecutar, detener, eliminar), un payload act\u00faa en el navegador de la v\u00edctima. La versi\u00f3n 2.0.8 soluciona el problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.5}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"references\":[{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8\",\"source\":\"security-advisories@github.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-52812\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-11T20:12:43.168456Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-11T20:12:55.351Z\"}}], \"cna\": {\"title\": \"LF Edge eKuiper has Stored XSS in Rules Functionality\", \"source\": {\"advisory\": \"GHSA-6hrw-x7pr-4mp8\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.4, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"lf-edge\", \"product\": \"ekuiper\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 2.0.8\"}]}], \"references\": [{\"url\": \"https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8\", \"name\": \"https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824\", \"name\": \"https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8\", \"name\": \"https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim\u0027s browser. Version 2.0.8 fixes the issue.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-79\", \"description\": \"CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-03-10T17:52:13.106Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-52812\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-11T20:13:01.144Z\", \"dateReserved\": \"2024-11-15T17:11:13.443Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-03-10T17:52:13.106Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
GHSA-6HRW-X7PR-4MP8
Vulnerability from github – Published: 2025-03-10 19:28 – Updated: 2025-03-14 19:56
VLAI?
Summary
LF Edge eKuiper allows Stored XSS in Rules Functionality
Details
Summary
Stored Cross-Site Scripting (XSS) vulnerability allows attackers to inject malicious scripts into web applications, which can then be executed in the context of other users' browsers. This can lead to unauthorized access to sensitive information, session hijacking, and spreading of malware, impacting user data privacy and application integrity.
Details
A user with rights to modificate the service (e.g. kuiperUser role) can inject XSS Payload into Rule id parameter. Then, after any user with access to this service (e.g. admin) will try make any modifications with the rule (update, run, stop, delete), a payload will act in victim's browser.
The issue appears as the notification to user is made in an insafe way:
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809
https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824
Such writing to 'http.ResponseWriter' bypasses HTML escaping that prevents cross-site scripting vulnerabilities.
Because of the some (meybe protection) mechanisms a real exploitation is possible only with limited special characters, but this is enough to construct a strong payload
PoC
- Create a rule with id:
<iframe src="javascript:alert`1337`">
- Just after Rule Submition the Payload shoots:
- Then, when another user (e.g.
admin) will try to do something with this rule (e.g. start), the payload shoots in his context:
Impact
Stored Cross-site Scripting (XSS) vulnerability
Reported by Alexey Kosmachev, Lead Pentester from Bi.Zone
Severity ?
5.4 (Medium)
{
"affected": [
{
"package": {
"ecosystem": "Go",
"name": "github.com/lf-edge/ekuiper/v2"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Go",
"name": "github.com/lf-edge/ekuiper"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "1.14.7"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-52812"
],
"database_specific": {
"cwe_ids": [
"CWE-79"
],
"github_reviewed": true,
"github_reviewed_at": "2025-03-10T19:28:38Z",
"nvd_published_at": "2025-03-10T18:15:29Z",
"severity": "MODERATE"
},
"details": "### Summary\nStored Cross-Site Scripting (XSS) vulnerability allows attackers to inject malicious scripts into web applications, which can then be executed in the context of other users\u0027 browsers. This can lead to unauthorized access to sensitive information, session hijacking, and spreading of malware, impacting user data privacy and application integrity.\n\n### Details\n\nA user with rights to modificate the service (e.g. kuiperUser role) can inject XSS Payload into Rule `id` parameter. Then, after any user with access to this service (e.g. admin) will try make any modifications with the rule (update, run, stop, delete), a payload will act in victim\u0027s browser.\n\nThe issue appears as the notification to user is made in an insafe way:\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809\n\nhttps://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824\n\nSuch writing to \u0027http.ResponseWriter\u0027 bypasses HTML escaping that prevents cross-site scripting vulnerabilities.\n\nBecause of the some (meybe protection) mechanisms a real exploitation is possible only with limited special characters, but this is enough to construct a strong payload\n\n### PoC\n1. Create a rule with id:\n```\n\u003ciframe src=\"javascript:alert`1337`\"\u003e\n```\n\n\n2. Just after Rule Submition the Payload shoots:\n\n\n\n3. Then, when another user (e.g. `admin`) will try to do something with this rule (e.g. start), the payload shoots in his context:\n\n\n\n### Impact\n\nStored Cross-site Scripting (XSS) vulnerability\n\nReported by Alexey Kosmachev, Lead Pentester from Bi.Zone",
"id": "GHSA-6hrw-x7pr-4mp8",
"modified": "2025-03-14T19:56:46Z",
"published": "2025-03-10T19:28:38Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52812"
},
{
"type": "PACKAGE",
"url": "https://github.com/lf-edge/ekuiper"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824"
},
{
"type": "WEB",
"url": "https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8"
},
{
"type": "WEB",
"url": "https://pkg.go.dev/vuln/GO-2025-3508"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
}
],
"summary": "LF Edge eKuiper allows Stored XSS in Rules Functionality"
}
FKIE_CVE-2024-52812
Vulnerability from fkie_nvd - Published: 2025-03-10 18:15 - Updated: 2025-03-10 18:15
Severity ?
Summary
LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim's browser. Version 2.0.8 fixes the issue.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim\u0027s browser. Version 2.0.8 fixes the issue."
},
{
"lang": "es",
"value": "LF Edge eKuiper es un motor de procesamiento de flujo y an\u00e1lisis de datos de Internet de las cosas. Antes de la versi\u00f3n 2.0.8, un usuario con derechos para modificar el servicio (por ejemplo, el rol kuiperUser) puede inyectar un payload de cross-site scripting en el par\u00e1metro `id` de la regla. Luego, despu\u00e9s de que cualquier usuario con acceso a este servicio (por ejemplo, administrador) intente realizar modificaciones con la regla (actualizar, ejecutar, detener, eliminar), un payload act\u00faa en el navegador de la v\u00edctima. La versi\u00f3n 2.0.8 soluciona el problema."
}
],
"id": "CVE-2024-52812",
"lastModified": "2025-03-10T18:15:29.207",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.5,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2025-03-10T18:15:29.207",
"references": [
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L681"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L716"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L735"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L794"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L809"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/blob/dbce32d5a195cf1de949b3a6a4e29f0df0f3330d/internal/server/rest.go#L824"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/releases/tag/v2.0.8"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/lf-edge/ekuiper/security/advisories/GHSA-6hrw-x7pr-4mp8"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
OPENSUSE-SU-2025:14893-1
Vulnerability from csaf_opensuse - Published: 2025-03-15 00:00 - Updated: 2025-03-15 00:00Summary
govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media
Notes
Title of the patch
govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media
Description of the patch
These are all security issues fixed in the govulncheck-vulndb-0.0.20250313T170021-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-14893
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the govulncheck-vulndb-0.0.20250313T170021-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-14893",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14893-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2025:14893-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IISU33DXNWHOYGRCT77IPABZTMARV5T6/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2025:14893-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IISU33DXNWHOYGRCT77IPABZTMARV5T6/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1725 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52812 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-1296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-1296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-26260 page",
"url": "https://www.suse.com/security/cve/CVE-2025-26260/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27403 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27403/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27616 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27616/"
}
],
"title": "govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media",
"tracking": {
"current_release_date": "2025-03-15T00:00:00Z",
"generator": {
"date": "2025-03-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:14893-1",
"initial_release_date": "2025-03-15T00:00:00Z",
"revision_history": [
{
"date": "2025-03-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"product": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"product_id": "govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"product": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"product_id": "govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"product": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"product_id": "govulncheck-vulndb-0.0.20250313T170021-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64",
"product": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64",
"product_id": "govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64"
},
"product_reference": "govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le"
},
"product_reference": "govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x"
},
"product_reference": "govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
},
"product_reference": "govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1725"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the kubevirt-csi component of OpenShift Virtualization\u0027s Hosted Control Plane (HCP). This issue could allow an authenticated attacker to gain access to the root HCP worker node\u0027s volume by creating a custom Persistent Volume that matches the name of a worker node.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1725",
"url": "https://www.suse.com/security/cve/CVE-2024-1725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-1725"
},
{
"cve": "CVE-2024-52812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52812"
}
],
"notes": [
{
"category": "general",
"text": "LF Edge eKuiper is an internet-of-things data analytics and stream processing engine. Prior to version 2.0.8, auser with rights to modify the service (e.g. kuiperUser role) can inject a cross-site scripting payload into the rule `id` parameter. Then, after any user with access to this service (e.g. admin) tries make any modifications with the rule (update, run, stop, delete), a payload acts in the victim\u0027s browser. Version 2.0.8 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52812",
"url": "https://www.suse.com/security/cve/CVE-2024-52812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-52812"
},
{
"cve": "CVE-2025-1296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-1296"
}
],
"notes": [
{
"category": "general",
"text": "Nomad Community and Nomad Enterprise (\"Nomad\") are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1.8.11, and 1.7.19.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-1296",
"url": "https://www.suse.com/security/cve/CVE-2025-1296"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-1296"
},
{
"cve": "CVE-2025-26260",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-26260"
}
],
"notes": [
{
"category": "general",
"text": "Plenti \u003c= 0.7.16 is vulnerable to code execution. Users uploading \u0027.svelte\u0027 files with the /postLocal endpoint can define the file name as javascript codes. The server executes the uploaded file name in host, and cause code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-26260",
"url": "https://www.suse.com/security/cve/CVE-2025-26260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "not set"
}
],
"title": "CVE-2025-26260"
},
{
"cve": "CVE-2025-27403",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27403"
}
],
"notes": [
{
"category": "general",
"text": "Ratify is a verification engine as a binary executable and on Kubernetes which enables verification of artifact security metadata and admits for deployment only those that comply with policies the user creates. In a Kubernetes environment, Ratify can be configured to authenticate to a private Azure Container Registry (ACR). The Azure workload identity and Azure managed identity authentication providers are configured in this setup. Users that configure a private ACR to be used with the Azure authentication providers may be impacted by a vulnerability that exists in versions prior to 1.2.3 and 1.3.2. Both Azure authentication providers attempt to exchange an Entra ID (EID) token for an ACR refresh token. However, Ratify\u0027s Azure authentication providers did not verify that the target registry is an ACR. This could have led to the EID token being presented to a non-ACR registry during token exchange. EID tokens with ACR access can potentially be extracted and abused if a user workload contains an image reference to a malicious registry. As of versions 1.2.3 and 1.3.2, the Azure workload identity and Azure managed identity authentication providers are updated to add new validation prior to EID token exchange. Validation relies upon registry domain validation against a pre-configured list of well-known ACR endpoints. EID token exchange will be executed only if at least one of the configured well-known domain suffixes (wildcard support included) matches the registry domain of the image reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27403",
"url": "https://www.suse.com/security/cve/CVE-2025-27403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-27403"
},
{
"cve": "CVE-2025-27616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27616"
}
],
"notes": [
{
"category": "general",
"text": "Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. Prior to versions 0.25.3 and 0.26.3, by spoofing a webhook payload with a specific set of headers and body data, an attacker could transfer ownership of a repository and its repo level secrets to a separate repository. These secrets could be exfiltrated by follow up builds to the repository. Users with an enabled repository with access to repo level CI secrets in Vela are vulnerable to the exploit, and any user with access to the CI instance and the linked source control manager can perform the exploit. Versions 0.25.3 and 0.26.3 fix the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27616",
"url": "https://www.suse.com/security/cve/CVE-2025-27616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.aarch64",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.ppc64le",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.s390x",
"openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250313T170021-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-03-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-27616"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…