CVE-2022-32114 : An unrestricted file upload vulnerability in the Add New Assets function of Stra

An unrestricted file upload vulnerability in the Add New Assets function of Strapi 4.1.12 allows attackers to conduct XSS attacks via a crafted PDF file. NOTE: the project documentation suggests that a user with the Media Library "Create (upload)" permission is supposed to be able to upload PDF files containing JavaScript, and that all files in a public assets folder are accessible to the outside world (unless the filename begins with a dot character). The administrator can choose to allow only image, video, and audio files (i.e., not PDF) if desired.

Published 2022-07-13 21:15:08

Updated 2024-08-03 08:15:31

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2022-32114

Strapi » Strapi » Version: 4.1.12
cpe:2.3:a:strapi:strapi:4.1.12:-:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-32114

EPSS FAQ

0.59%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 67 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-32114

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.5	MEDIUM	AV:N/AC:L/Au:S/C:P/I:P/A:P	8.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-32114

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2022-32114

https://grimthereaperteam.medium.com/strapi-v4-1-12-unrestricted-file-upload-b993bfd07e4e

Strapi v4.1.12 — Unrestricted File Upload - GrimTheRipper - Medium
Exploit;Third Party Advisory
https://github.com/bypazs/strapi

GitHub - bypazs/strapi: strapi v4.1.12 have vulnerability file upload
Product
https://github.com/strapi/strapi/blob/d9277d616b4478a3839e79e47330a4aaf167a2f1/packages/core/upload/admin/src/components/MediaLibraryInput/index.js#L33

strapi/index.js at d9277d616b4478a3839e79e47330a4aaf167a2f1 · strapi/strapi · GitHub
https://docs.strapi.io/user-docs/users-roles-permissions/configuring-administrator-roles

Configuring administrator roles | Strapi Documentation
https://docs.strapi.io/dev-docs/configurations/public-assets

Public assets configuration | Strapi Documentation
https://github.com/strapi/strapi/blob/d9277d616b4478a3839e79e47330a4aaf167a2f1/packages/core/content-type-builder/admin/src/components/AllowedTypesSelect/index.js#L14

strapi/index.js at d9277d616b4478a3839e79e47330a4aaf167a2f1 · strapi/strapi · GitHub

Jump to

Vulnerability Details : CVE-2022-32114

Products affected by CVE-2022-32114

Exploit prediction scoring system (EPSS) score for CVE-2022-32114

CVSS scores for CVE-2022-32114

CWE ids for CVE-2022-32114

References for CVE-2022-32114