CVE-2022-31000 - OpenCVE

solidus_backend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery (CSRF) vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the execution happens on a store administrator's computer. Users should upgrade to solidus_backend 3.1.6, 3.0.6, or 2.11.16 to receive a patch.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Nebulab	Solidus

Configuration 1 [-]

OR	cpe:2.3:a:nebulab:solidus::::::::
	cpe:2.3:a:nebulab:solidus::::::::
	cpe:2.3:a:nebulab:solidus::::::::

No data.

References

Link	Providers
https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c
https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2022-06-01T17:25:11

Updated: 2024-08-03T07:03:40.214Z

Reserved: 2022-05-18T00:00:00

Link: CVE-2022-31000

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-06-01T18:15:07.873

Modified: 2022-06-08T20:13:10.833

Link: CVE-2022-31000

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "solidus", "vendor": "solidusio", "versions": [{"status": "affected", "version": "< 2.11.16"}, {"status": "affected", "version": ">= 3.0.0, < 3.0.6"}, {"status": "affected", "version": ">= 3.1.0, < 3.1.6"}]}], "descriptions": [{"lang": "en", "value": "solidus_backend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery (CSRF) vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the execution happens on a store administrator's computer. Users should upgrade to solidus_backend 3.1.6, 3.0.6, or 2.11.16 to receive a patch."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-352", "description": "CWE-352: Cross-Site Request Forgery (CSRF)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-06-01T17:25:11", "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c"}], "source": {"advisory": "GHSA-8639-qx56-r428", "discovery": "UNKNOWN"}, "title": "CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-advisories@github.com", "ID": "CVE-2022-31000", "STATE": "PUBLIC", "TITLE": "CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "solidus", "version": {"version_data": [{"version_value": "< 2.11.16"}, {"version_value": ">= 3.0.0, < 3.0.6"}, {"version_value": ">= 3.1.0, < 3.1.6"}]}}]}, "vendor_name": "solidusio"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "solidus_backend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery (CSRF) vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the execution happens on a store administrator's computer. Users should upgrade to solidus_backend 3.1.6, 3.0.6, or 2.11.16 to receive a patch."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-352: Cross-Site Request Forgery (CSRF)"}]}]}, "references": {"reference_data": [{"name": "https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428", "refsource": "CONFIRM", "url": "https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428"}, {"name": "https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c", "refsource": "MISC", "url": "https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c"}]}, "source": {"advisory": "GHSA-8639-qx56-r428", "discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T07:03:40.214Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c"}]}]}, "cveMetadata": {"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "assignerShortName": "GitHub_M", "cveId": "CVE-2022-31000", "datePublished": "2022-06-01T17:25:11", "dateReserved": "2022-05-18T00:00:00", "dateUpdated": "2024-08-03T07:03:40.214Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A5D9F81-FC48-4924-9C43-2D769567A39C", "versionEndExcluding": "2.11.16", "vulnerable": true}, {"criteria": "cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*", "matchCriteriaId": "B58D450A-ADBF-4E0F-9C11-B11752ADE39E", "versionEndExcluding": "3.0.5", "versionStartIncluding": "3.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nebulab:solidus:*:*:*:*:*:*:*:*", "matchCriteriaId": "09243C20-0699-4273-A7B9-C2DE53E062E8", "versionEndExcluding": "3.1.6", "versionStartIncluding": "3.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "solidus_backend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery (CSRF) vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the execution happens on a store administrator's computer. Users should upgrade to solidus_backend 3.1.6, 3.0.6, or 2.11.16 to receive a patch."}, {"lang": "es", "value": "solidus_backend es la interfaz de administraci\u00f3n del framework de comercio electr\u00f3nico Solidus. Las versiones anteriores a 3.1.6, 3.0.6 y 2.11.16, contienen una vulnerabilidad de tipo cross-site request forgery (CSRF). La vulnerabilidad permite a atacantes cambiar el estado de los ajustes de un pedido si presentan su n\u00famero, y la ejecuci\u00f3n ocurre en el ordenador de un administrador de la tienda. Los usuarios deben actualizar a solidus_backend versiones 3.1.6, 3.0.6 o 2.11.16 para recibir el parche"}], "id": "CVE-2022-31000", "lastModified": "2022-06-08T20:13:10.833", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 2.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2022-06-01T18:15:07.873", "references": [{"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "security-advisories@github.com", "type": "Primary"}]}