CVE-2024-21648: XWiki has no right protection on rollback action
First published: Mon Jan 08 2024(Updated: )
### Impact The rollback action is missing a right protection: it means that a user can rollback to a previous version of the page to gain rights they don't have anymore. This vulnerability impacts all version of XWiki since rollback action is available. ### Patches The problem has been patched in XWiki 14.10.16, 15.5.3 and 15.8-rc-1 by ensuring that the rights are checked before performing the rollback. ### Workarounds There's no workaround for this vulnerability, except paying attention to delete old versions of documents that could allow users to gain more rights. ### References * JIRA ticket: https://jira.xwiki.org/browse/XWIKI-21257 * Commit: [4de72875ca49602796165412741033bfdbf1e680](https://github.com/xwiki/xwiki-platform/commit/4de72875ca49602796165412741033bfdbf1e680) ### For more information If you have any questions or comments about this advisory: * Open an issue in [Jira XWiki.org](https://jira.xwiki.org/) * Email us at [Security Mailing List](mailto:security@xwiki.org)
Credit: security-advisories@github.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.xwiki.platform:xwiki-platform | >=15.6-rc-1<15.8-rc-1 | 15.8-rc-1 |
| maven/org.xwiki.platform:xwiki-platform | >=15.0-rc-1<15.5.3 | 15.5.3 |
| maven/org.xwiki.platform:xwiki-platform-oldcore | >=1.0<14.10.17 | 14.10.17 |
| Xwiki | <14.10.17 | |
| Xwiki | >=15.0<15.5.3 | |
| Xwiki | >=15.6<15.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-xh35-w7wg-95v3
- https://github.com/xwiki/xwiki-platform/commit/1f3220f14bb3a4dcbd10d31134c39a06037f9a74
- https://github.com/xwiki/xwiki-platform/commit/4de72875ca49602796165412741033bfdbf1e680
- https://github.com/xwiki/xwiki-platform/commit/4fa7f302b14da6f05a6904a14e3741c4c06c40a1
- https://jira.xwiki.org/browse/XWIKI-21257
- https://nvd.nist.gov/vuln/detail/CVE-2024-21648
- https://github.com/advisories/GHSA-xh35-w7wg-95v3 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2024-21648?
CVE-2024-21648 is considered a high severity vulnerability due to its potential for unauthorized access through the rollback action.
How do I fix CVE-2024-21648?
To fix CVE-2024-21648, upgrade to XWiki version 15.8-rc-1, 15.5.3, or 14.10.17.
Which versions of XWiki are affected by CVE-2024-21648?
All versions of XWiki are affected by CVE-2024-21648 since the rollback functionality is available across them.
What impact does CVE-2024-21648 have on users?
CVE-2024-21648 allows users to gain access to rights they no longer have by rolling back to previous versions of pages.
Is there a workaround for CVE-2024-21648?
There is no official workaround for CVE-2024-21648; upgrading to the fixed versions is the recommended action.
- collector/github-advisory-latest
- alias/GHSA-xh35-w7wg-95v3
- alias/CVE-2024-21648
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/references
- agent/severity
- agent/author
- agent/title
- agent/weakness
- collector/github-advisory
- source/GitHub
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/event
- agent/description
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/trending
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-cve
- package-manager/maven
- vendor/xwiki
- canonical/xwiki
- version/xwiki/15.0
- version/xwiki/15.6