CVE-2023-49946 - Vulnerability Details - OpenCVE

In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues, read private pull requests, delete issues, and perform other unauthorized actions.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Forgejo	Forgejo

Configuration 1 [-]

cpe:2.3:a:forgejo:forgejo:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://about.gitea.com/security
https://codeberg.org/forgejo/forgejo/src/branch/forgejo/RELEASE-NOTES.md
https://forgejo.org/2023-11-release-v1-20-5-1/
https://github.com/gogs/gogs/security

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-03T00:00:00

Updated: 2024-08-02T22:09:49.457Z

Reserved: 2023-12-03T00:00:00

Link: CVE-2023-49946

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-12-03T19:15:08.227

Modified: 2024-11-21T08:34:03.360

Link: CVE-2023-49946

Redhat

No data.

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:forgejo:forgejo:*:*:*:*:*:*:*:*", "matchCriteriaId": "EE9913E5-1861-45BB-AFAA-03E470042C7C", "versionEndExcluding": "1.20.5-1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues, read private pull requests, delete issues, and perform other unauthorized actions."}, {"lang": "es", "value": "En Forgejo anterior a 1.20.5-1, ciertos endpoints no verifican si un objeto pertenece a un repositorio cuyos permisos se est\u00e1n verificando. Esto permite a atacantes remotos leer problemas privados, leer solicitudes de extracci\u00f3n privadas, eliminar problemas y realizar otras acciones no autorizadas."}], "id": "CVE-2023-49946", "lastModified": "2024-11-21T08:34:03.360", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-12-03T19:15:08.227", "references": [{"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://about.gitea.com/security"}, {"source": "cve@mitre.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://codeberg.org/forgejo/forgejo/src/branch/forgejo/RELEASE-NOTES.md"}, {"source": "cve@mitre.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://forgejo.org/2023-11-release-v1-20-5-1/"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://github.com/gogs/gogs/security"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "https://about.gitea.com/security"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://codeberg.org/forgejo/forgejo/src/branch/forgejo/RELEASE-NOTES.md"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://forgejo.org/2023-11-release-v1-20-5-1/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "https://github.com/gogs/gogs/security"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "nvd@nist.gov", "type": "Primary"}]}