Vulnerability Details : CVE-2023-25164
Tinacms is a Git-backed headless content management system with support for visual editing. Sites being built with @tinacms/cli >= 1.0.0 && < 1.0.9 which store sensitive values in the process.env variable are impacted. These values will be added in plaintext to the index.js file. If you're on a version prior to 1.0.0 this vulnerability does not affect you. If you are affected and your Tina-enabled website has sensitive credentials stored as environment variables (eg. Algolia API keys) you should rotate those keys immediately. This issue has been patched in @tinacms/cli@1.0.9. Users are advised to upgrade. There are no known workarounds for this issue.
Vulnerability category: Information leak
Products affected by CVE-2023-25164
- cpe:2.3:a:tina:tinacms:*:*:*:*:*:node.js:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-25164
0.15%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 51 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-25164
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST | |
8.6
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N |
3.9
|
4.0
|
GitHub, Inc. |
CWE ids for CVE-2023-25164
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: security-advisories@github.com (Primary)
-
The product writes sensitive information to a log file.Assigned by: security-advisories@github.com (Primary)
References for CVE-2023-25164
-
https://github.com/tinacms/tinacms/pull/3584
Only expose `NEXT_PUBLIC_*` and `TINA_PUBLIC_*` ENV vars by logan-anderson · Pull Request #3584 · tinacms/tinacms · GitHubIssue Tracking;Patch
-
https://github.com/tinacms/tinacms/security/advisories/GHSA-pc2q-jcxq-rjrr
Sensitive Information leak via Script File in TinaCMS · Advisory · tinacms/tinacms · GitHubVendor Advisory
Jump to