Drupal 8.2.x < 8.2.0-rc2 Multiple Vulnerabilities

medium Web App Scanning Plugin ID 98550

Language:

Synopsis

Drupal 8.2.x < 8.2.0-rc2 Multiple Vulnerabilities

Description

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities :

- A flaw exists that is due to the program allowing users who have rights to edit a node to set the visibility for comments on that node. This may allow an authenticated remote attacker to adjust a node's comment visibility preferences without the appropriate privileges. (CVE-2016-7570)

- A flaw exists that allows a reflected cross-site scripting (XSS) attack. This flaw exists because the program does not validate input when handling HTTP exception messages before returning it to users. This may allow a context-dependent attacker to create a specially crafted request that would execute arbitrary script code in a user's browser session within the trust relationship between their browser and the server. (CVE-2016-7571)

- A flaw exists related to the 'system.temporary' route that may allow an authenticated remote attacker to download the full config export without the appropriate privileges. This may allow the attacker to gain unauthorized access to sensitive information. (CVE-2016-7572)

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update to Drupal version 8.2.0-rc2 or latest.

See Also

https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2016-09-21/drupal-core-critical-multiple

https://www.drupal.org/project/drupal/releases/8.2.0-rc2

Plugin Details

Severity: Medium

ID: 98550

Type: remote

Family: Component Vulnerability

Published: 11/5/2018

Updated: 3/14/2023

Scan Template: api, basic, full, pci, scan

Risk Information

VPR

Risk Factor: Low

Score: 3.0

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS Score Source: CVE-2016-7571

CVSS v3

Risk Factor: Medium

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS Score Source: CVE-2016-7571

Vulnerability Information

CPE: cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 10/3/2016

Vulnerability Publication Date: 10/3/2016

Reference Information

CVE: CVE-2016-7570, CVE-2016-7571, CVE-2016-7572

BID: 93101

CWE: 264, 79

OWASP: 2010-A2, 2010-A8, 2013-A3, 2013-A7, 2013-A9, 2017-A5, 2017-A7, 2017-A9, 2021-A1, 2021-A3, 2021-A6

WASC: Cross-Site Scripting, Insufficient Authorization

CAPEC: 17, 209, 35, 58, 588, 591, 592, 63, 69, 76, 85

DISA STIG: APSC-DV-002490, APSC-DV-002630

HIPAA: 164.306(a)(1), 164.306(a)(2)

ISO: 27001-A.14.2.5

NIST: sp800_53-CM-6b, sp800_53-SI-10

OWASP API: 2019-API7, 2023-API8

OWASP ASVS: 4.0.2-14.2.1, 4.0.2-5.3.3

PCI-DSS: 3.2-6.2, 3.2-6.5.7