CVE-2024-31997

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-31997
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-31997.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-31997
Aliases
Published
2024-04-10T21:55:43.475Z
Modified
2026-03-13T07:55:04.110879Z
Severity
  • 9.9 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
Summary
XWiki Platform remote code execution from account through UIExtension parameters
Details

XWiki Platform is a generic wiki platform. Prior to versions 4.10.19, 15.5.4, and 15.10-rc-1, parameters of UI extensions are always interpreted as Velocity code and executed with programming rights. Any user with edit right on any document like the user's own profile can create UI extensions. This allows remote code execution and thereby impacts the confidentiality, integrity and availability of the whole XWiki installation. This vulnerability has been patched in XWiki 14.10.19, 15.5.4 and 15.9-RC1. No known workarounds are available.

Database specific 
{
    "cwe_ids": [
        "CWE-862"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/31xxx/CVE-2024-31997.json"
}
References

Affected packages

Git / github.com/xwiki/xwiki-platform

Affected ranges

Type
GIT
Repo
https://github.com/xwiki/xwiki-platform
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
9d9df1a75094bc677015c7f8321a7e2081662aae
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "14.10.19"
        }
    ]
}
Type
GIT
Repo
https://github.com/xwiki/xwiki-platform
Events
Introduced
d823334f762d5ad86bea378b65af0b230668d401
Fixed
0e37972524b5a68c44734112f38a48e746b0909e
Database specific 
{
    "versions": [
        {
            "introduced": "15.0-rc-1"
        },
        {
            "fixed": "15.5.4"
        }
    ]
}
Type
GIT
Repo
https://github.com/xwiki/xwiki-platform
Events
Introduced
201a8cdfdaad44618c79c6dd0c0bb855b446aafb
Fixed
887a52296cbe18cda0f6b3b8f709b6cd8365de1e
Database specific 
{
    "versions": [
        {
            "introduced": "15.6-rc-1"
        },
        {
            "fixed": "15.9-rc-1"
        }
    ]
}

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-31997.json"