CVE-2019-17673 : WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET reque

WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.

Published 2019-10-17 13:15:11

Updated 2022-03-31 17:51:54

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2019-17673

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Wordpress » Wordpress
Versions before (<) 5.2.4
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
Matching versions

Top countries where our scanners detected CVE-2019-17673

Top open port discovered on systems with this issue 80

IPs affected by CVE-2019-17673 3,013

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2019-17673!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

EPSS FAQ

4.88%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 89 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

https://www.debian.org/security/2020/dsa-4599

Debian -- Security Information -- DSA-4599-1 wordpress
Third Party Advisory

CVEs referencing this url
https://seclists.org/bugtraq/2020/Jan/8

Bugtraq: [SECURITY] [DSA 4599-1] wordpress security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://github.com/WordPress/WordPress/commit/b224c251adfa16a5f84074a3c0886270c9df38de

REST API: Send a Vary: Origin header on GET requests. · WordPress/WordPress@b224c25 · GitHub
Patch;Third Party Advisory
https://wpvulndb.com/vulnerabilities/9911

WordPress <= 5.2.3 - JSON Request Cache Poisoning
Third Party Advisory
https://core.trac.wordpress.org/changeset/46478

Changeset 46478 – WordPress Trac
Patch;Vendor Advisory
https://www.debian.org/security/2020/dsa-4677

Debian -- Security Information -- DSA-4677-1 wordpress
Third Party Advisory

CVEs referencing this url
https://blog.wpscan.org/wordpress/security/release/2019/10/15/wordpress-524-security-release-breakdown.html

WordPress 5.2.4 Security Release Breakdown
Third Party Advisory

CVEs referencing this url
https://wordpress.org/news/2019/10/wordpress-5-2-4-security-release/

News – WordPress 5.2.4 Security Release – WordPress.org
Release Notes;Vendor Advisory

CVEs referencing this url

Jump to