CVE-2024-28853 - Vulnerability Details - OpenCVE

Ampache is a web based audio/video streaming application and file manager. Stored Cross Site Scripting (XSS) vulnerability in ampache before v6.3.1 allows a remote attacker to execute code via a crafted payload to serval parameters in the post request of /preferences.php?action=admin_update_preferences. This vulnerability is fixed in 6.3.1.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ampache	Ampache

Configuration 1 [-]

cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8

History

Wed, 15 Jan 2025 18:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ampache Ampache ampache
CPEs		cpe:2.3:a:ampache:ampache::::::::
Vendors & Products		Ampache Ampache ampache

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-03-27T13:17:56.679Z

Updated: 2024-08-29T19:10:15.169Z

Reserved: 2024-03-11T22:45:07.685Z

Link: CVE-2024-28853

Vulnrichment

Updated: 2024-08-02T00:56:58.121Z

NVD

Status : Analyzed

Published: 2024-03-27T14:15:10.573

Modified: 2025-01-15T17:52:58.400

Link: CVE-2024-28853

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-28853", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-11T22:45:07.685Z", "datePublished": "2024-03-27T13:17:56.679Z", "dateUpdated": "2024-08-29T19:10:15.169Z"}, "containers": {"cna": {"title": "Ampache Stored XSS", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 3.9, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8"}], "affected": [{"vendor": "ampache", "product": "ampache", "versions": [{"version": "< 6.3.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-27T13:17:56.679Z"}, "descriptions": [{"lang": "en", "value": "Ampache is a web based audio/video streaming application and file manager. Stored Cross Site Scripting (XSS) vulnerability in ampache before v6.3.1 allows a remote attacker to execute code via a crafted payload to serval parameters in the post request of /preferences.php?action=admin_update_preferences. This vulnerability is fixed in 6.3.1."}], "source": {"advisory": "GHSA-prw2-7cr3-5mx8", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:56:58.121Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8"}]}, {"affected": [{"vendor": "ampache", "product": "ampache", "cpes": ["cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "6.3.1", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-22T17:51:39.825800Z", "id": "CVE-2024-28853", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-29T19:10:15.169Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "name": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "tags": ["x_refsource_CONFIRM", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:56:58.121Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-28853", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-22T17:51:39.825800Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*"], "vendor": "ampache", "product": "ampache", "versions": [{"status": "affected", "version": "0", "lessThan": "6.3.1", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-29T15:34:47.020Z"}}], "cna": {"title": "Ampache Stored XSS", "source": {"advisory": "GHSA-prw2-7cr3-5mx8", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.9, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "ampache", "product": "ampache", "versions": [{"status": "affected", "version": "< 6.3.1"}]}], "references": [{"url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "name": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "Ampache is a web based audio/video streaming application and file manager. Stored Cross Site Scripting (XSS) vulnerability in ampache before v6.3.1 allows a remote attacker to execute code via a crafted payload to serval parameters in the post request of /preferences.php?action=admin_update_preferences. This vulnerability is fixed in 6.3.1."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-27T13:17:56.679Z"}}}, "cveMetadata": {"cveId": "CVE-2024-28853", "state": "PUBLISHED", "dateUpdated": "2024-08-29T19:10:15.169Z", "dateReserved": "2024-03-11T22:45:07.685Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-03-27T13:17:56.679Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*", "matchCriteriaId": "A9E60433-868B-4354-93F8-C418983B189A", "versionEndExcluding": "6.3.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Ampache is a web based audio/video streaming application and file manager. Stored Cross Site Scripting (XSS) vulnerability in ampache before v6.3.1 allows a remote attacker to execute code via a crafted payload to serval parameters in the post request of /preferences.php?action=admin_update_preferences. This vulnerability is fixed in 6.3.1."}, {"lang": "es", "value": "Ampache es una aplicaci\u00f3n de transmisi\u00f3n de audio/v\u00eddeo y un administrador de archivos basado en web. Vulnerabilidad de cross-site scripting (XSS) almacenadas en Ampache anterior a v6.3.1 permite a un atacante remoto ejecutar c\u00f3digo a trav\u00e9s de un payload manipulado para par\u00e1metros de servicio en la solicitud posterior de /preferences.php?action=admin_update_preferences. Esta vulnerabilidad se soluciona en 6.3.1."}], "id": "CVE-2024-28853", "lastModified": "2025-01-15T17:52:58.400", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 3.9, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 0.5, "impactScore": 3.4, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 1.7, "impactScore": 3.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-03-27T14:15:10.573", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/ampache/ampache/security/advisories/GHSA-prw2-7cr3-5mx8"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}