Detections
Analytics

CKEditor 4.x < 4.24.0-lts Multitple XSS

medium Nessus Plugin ID 190347

Language:

Synopsis

The remote web server may be affected by multiple cross site scripting vulnerabilities.

Description

The version of CKEditor included on the remote web host is 4.x prior to 4.24.0-lts. It may, therefore, be affected by multiple cross-site scripting (XSS) vulnerabilities.

 - A cross-site scripting vulnerability affecting editor instances that enabled full-page editing mode or enabled CDATA elements in Advanced Content Filtering configuration (defaults to `script` and `style` elements). The vulnerability allows attackers to inject malformed HTML content bypassing Advanced Content Filtering mechanism, which could result in executing JavaScript code. An attacker could abuse faulty CDATA content detection and use it to prepare an intentional attack on the editor. (CVE-2024-24815)

 - A cross-site scripting vulnerability in samples that use the `preview` feature. All integrators that use these samples in the production code can be affected. The vulnerability allows an attacker to execute JavaScript code by abusing the misconfigured preview feature. (CVE-2024-24816)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to CKEditor 4.24.0-lts or later.

See Also

http://www.nessus.org/u?7723975d

http://www.nessus.org/u?661569b4

https://ckeditor.com/cke4/release-notes

Plugin Details

Severity: Medium

ID: 190347

File Name: cksource_ckeditor_4_24_0_lts.nasl

Version: 1.2

Type: remote

Published: 2/9/2024

Updated: 2/15/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.0

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 4.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2024-24816

CVSS v3

Risk Factor: Medium

Base Score: 6.1

Temporal Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cksource:ckeditor

Required KB Items: installed_sw/CKSource CKEditor

Exploit Ease: No known exploits are available

Patch Publication Date: 2/7/2024

Vulnerability Publication Date: 2/7/2024

Reference Information

CVE: CVE-2024-24815, CVE-2024-24816

IAVA: 2024-A-0077