Vulnerability Details : CVE-2023-25569
Apollo is a configuration management system. Prior to version 2.1.0, a low-privileged user can create a special web page. If an authenticated portal admin visits this page, the page can silently send a request to assign new roles for that user without any confirmation from the Portal admin. Cookie SameSite strategy was set to Lax in version 2.1.0. As a workaround, avoid visiting unknown source pages.
Vulnerability category: Cross-site request forgery (CSRF)
Products affected by CVE-2023-25569
- cpe:2.3:a:apolloconfig:apollo:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-25569
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 26 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-25569
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.7
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N |
2.1
|
3.6
|
NIST | |
5.7
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N |
2.1
|
3.6
|
GitHub, Inc. |
CWE ids for CVE-2023-25569
-
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.Assigned by:
- nvd@nist.gov (Primary)
- security-advisories@github.com (Secondary)
References for CVE-2023-25569
-
https://www.apolloconfig.com/#/en/usage/apollo-user-guide?id=_71-security-related
Apollo Security Best PracticesProduct
-
https://github.com/apolloconfig/apollo/security/advisories/GHSA-fmxq-v8mg-qh25
Potential csrf issue in apollo-portal · Advisory · apolloconfig/apollo · GitHubThird Party Advisory
-
https://github.com/apolloconfig/apollo/commit/00d968a7229f809b0d8ed0532e8c01a6c2b7c750
config cookie same site to lax · apolloconfig/apollo@00d968a · GitHubPatch
-
https://github.com/apolloconfig/apollo/releases/tag/v2.1.0
Release Apollo 2.1.0 Release · apolloconfig/apollo · GitHubRelease Notes
-
https://github.com/apolloconfig/apollo/pull/4664
config cookie same site to lax by nobodyiam · Pull Request #4664 · apolloconfig/apollo · GitHubIssue Tracking;Patch
Jump to