GHSA-rf3g-v8p5-p675
Suggest an improvement- Source
- https://github.com/advisories/GHSA-rf3g-v8p5-p675
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-rf3g-v8p5-p675/GHSA-rf3g-v8p5-p675.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GHSA-rf3g-v8p5-p675
- Aliases
- Related
- Published
- 2022-12-05T23:06:14Z
- Modified
- 2023-11-01T05:00:25.886245Z
- Severity
-
- 9.4 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L CVSS Calculator
- Summary
- NodeBB vulnerable to account takeover via prototype vulnerability
- Details
-
Impact
Due to a plain object with a prototype being used in socket.io message handling a specially crafted payload can be used to impersonate other users and takeover accounts.
Patches
Patched in 2.6.1
Workarounds
Site maintainers can cherry-pick https://github.com/NodeBB/NodeBB/commit/48d143921753914da45926cca6370a92ed0c46b8 into their codebase to patch the exploit.
For more information
If you have any questions or comments about this advisory:
Discuss it on our community forum Email us at support@nodebb.org
- Database specific
{ "nvd_published_at": "2022-12-05T21:15:00Z", "github_reviewed_at": "2022-12-05T23:06:14Z", "severity": "CRITICAL", "github_reviewed": true, "cwe_ids": [ "CWE-665" ] }- References
Affected packages
npm / nodebb
Package
- Name
- nodebb
- View open source insights on deps.dev
- Purl
- pkg:npm/nodebb