CVE-2023-36826 : Sentry is an error tracking and performance monitoring platform. Starting in ver

Sentry is an error tracking and performance monitoring platform. Starting in version 8.21.0 and prior to version 23.5.2, an authenticated user can download a debug or artifact bundle from arbitrary organizations and projects with a known bundle ID. The user does not need to be a member of the organization or have permissions on the project. A patch was issued in version 23.5.2 to ensure authorization checks are properly scoped on requests to retrieve debug or artifact bundles. Authenticated users who do not have the necessary permissions on the particular project are no longer able to download them. Sentry SaaS users do not need to take any action. Self-Hosted Sentry users should upgrade to version 23.5.2 or higher.

Published 2023-07-25 19:15:12

Updated 2023-08-02 15:57:31

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: BypassGain privilege

Products affected by CVE-2023-36826

Sentry » Sentry
Versions from including (>=) 8.21.0 and before (<) 23.5.2
cpe:2.3:a:sentry:sentry:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-36826

EPSS FAQ

0.18%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 40 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-36826

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None
7.7	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N	3.1	4.0	GitHub, Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Changed Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2023-36826

CWE-285 Improper Authorization

The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

Assigned by: security-advisories@github.com (Secondary)
CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Assigned by:
- nvd@nist.gov (Primary)
- security-advisories@github.com (Secondary)

References for CVE-2023-36826

https://github.com/getsentry/sentry/commit/e932b15435bf36239431eaa3790a6bcfa47046a9

Restrict file downloads to Project (#49680) · getsentry/sentry@e932b15 · GitHub
Patch
https://github.com/getsentry/sentry/security/advisories/GHSA-m4hc-m2v6-hfw8

Improper authorization on debug and artifact file downloads · Advisory · getsentry/sentry · GitHub
Vendor Advisory
https://github.com/getsentry/sentry/pull/49680

Restrict file downloads to Project by Swatinem · Pull Request #49680 · getsentry/sentry · GitHub
Patch

Jump to

Vulnerability Details : CVE-2023-36826

Products affected by CVE-2023-36826

Exploit prediction scoring system (EPSS) score for CVE-2023-36826

CVSS scores for CVE-2023-36826

CWE ids for CVE-2023-36826

References for CVE-2023-36826