OpenCVE

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. It is possible for users with (delete) or (suppressrevision) on any wiki in the farm to access suppressed wiki requests by going to the request's entry on Special:RequestWikiQueue on the wiki where they have these rights. The same vulnerability was present briefly on the REST API before being quickly corrected in commit `6bc0685`. To our knowledge, the vulnerable commits of the REST API are not running in production anywhere. This vulnerability is fixed in 23415c17ffb4832667c06abcf1eadadefd4c8937.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq
https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8
https://issue-tracker.miraheze.org/F3093343
https://issue-tracker.miraheze.org/T11999

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-03-28T13:40:43.231Z

Updated: 2024-09-03T18:09:56.991Z

Reserved: 2024-03-21T15:12:08.998Z

Link: CVE-2024-29897

Vulnrichment

Updated: 2024-08-02T01:17:58.463Z

NVD

Status : Awaiting Analysis

Published: 2024-03-28T14:15:14.557

Modified: 2024-11-21T09:08:34.397

Link: CVE-2024-29897

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-29897", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-21T15:12:08.998Z", "datePublished": "2024-03-28T13:40:43.231Z", "dateUpdated": "2024-09-03T18:09:56.991Z"}, "containers": {"cna": {"title": "CreateWiki Leak of suppressed wiki requests outside of `CreateWikiGlobalWiki`", "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "lang": "en", "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq"}, {"name": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "tags": ["x_refsource_MISC"], "url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8"}, {"name": "https://issue-tracker.miraheze.org/F3093343", "tags": ["x_refsource_MISC"], "url": "https://issue-tracker.miraheze.org/F3093343"}, {"name": "https://issue-tracker.miraheze.org/T11999", "tags": ["x_refsource_MISC"], "url": "https://issue-tracker.miraheze.org/T11999"}], "affected": [{"vendor": "miraheze", "product": "CreateWiki", "versions": [{"version": "< 23415c17ffb4832667c06abcf1eadadefd4c8937", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-28T13:40:43.231Z"}, "descriptions": [{"lang": "en", "value": "CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. It is possible for users with (delete) or (suppressrevision) on any wiki in the farm to access suppressed wiki requests by going to the request's entry on Special:RequestWikiQueue on the wiki where they have these rights. The same vulnerability was present briefly on the REST API before being quickly corrected in commit `6bc0685`. To our knowledge, the vulnerable commits of the REST API are not running in production anywhere. This vulnerability is fixed in 23415c17ffb4832667c06abcf1eadadefd4c8937."}], "source": {"advisory": "GHSA-4rcf-3cj2-46mq", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:17:58.463Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq"}, {"name": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8"}, {"name": "https://issue-tracker.miraheze.org/F3093343", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://issue-tracker.miraheze.org/F3093343"}, {"name": "https://issue-tracker.miraheze.org/T11999", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://issue-tracker.miraheze.org/T11999"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-21T19:39:30.333387Z", "id": "CVE-2024-29897", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T18:09:56.991Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "name": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "name": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://issue-tracker.miraheze.org/F3093343", "name": "https://issue-tracker.miraheze.org/F3093343", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://issue-tracker.miraheze.org/T11999", "name": "https://issue-tracker.miraheze.org/T11999", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:17:58.463Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-29897", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-21T19:39:30.333387Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T18:09:52.005Z"}}], "cna": {"title": "CreateWiki Leak of suppressed wiki requests outside of `CreateWikiGlobalWiki`", "source": {"advisory": "GHSA-4rcf-3cj2-46mq", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "miraheze", "product": "CreateWiki", "versions": [{"status": "affected", "version": "< 23415c17ffb4832667c06abcf1eadadefd4c8937"}]}], "references": [{"url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "name": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "name": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8", "tags": ["x_refsource_MISC"]}, {"url": "https://issue-tracker.miraheze.org/F3093343", "name": "https://issue-tracker.miraheze.org/F3093343", "tags": ["x_refsource_MISC"]}, {"url": "https://issue-tracker.miraheze.org/T11999", "name": "https://issue-tracker.miraheze.org/T11999", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. It is possible for users with (delete) or (suppressrevision) on any wiki in the farm to access suppressed wiki requests by going to the request's entry on Special:RequestWikiQueue on the wiki where they have these rights. The same vulnerability was present briefly on the REST API before being quickly corrected in commit `6bc0685`. To our knowledge, the vulnerable commits of the REST API are not running in production anywhere. This vulnerability is fixed in 23415c17ffb4832667c06abcf1eadadefd4c8937."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-28T13:40:43.231Z"}}}, "cveMetadata": {"cveId": "CVE-2024-29897", "state": "PUBLISHED", "dateUpdated": "2024-09-03T18:09:56.991Z", "dateReserved": "2024-03-21T15:12:08.998Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-03-28T13:40:43.231Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. It is possible for users with (delete) or (suppressrevision) on any wiki in the farm to access suppressed wiki requests by going to the request's entry on Special:RequestWikiQueue on the wiki where they have these rights. The same vulnerability was present briefly on the REST API before being quickly corrected in commit `6bc0685`. To our knowledge, the vulnerable commits of the REST API are not running in production anywhere. This vulnerability is fixed in 23415c17ffb4832667c06abcf1eadadefd4c8937."}, {"lang": "es", "value": "CreateWiki es la extensi\u00f3n MediaWiki de Miraheze para solicitar y crear wikis. Es posible que los usuarios con (delete) o (suppressrevision) en cualquier wiki de la granja accedan a solicitudes de wiki suprimidas yendo a la entrada de la solicitud en Special:RequestWikiQueue en el wiki donde tienen estos derechos. La misma vulnerabilidad estuvo presente brevemente en la API REST antes de ser corregida r\u00e1pidamente en el commit `6bc0685`. Hasta donde sabemos, las confirmaciones vulnerables de la API REST no se est\u00e1n ejecutando en producci\u00f3n en ning\u00fan lugar. Esta vulnerabilidad se soluciona en 23415c17ffb4832667c06abcf1eadaefd4c8937."}], "id": "CVE-2024-29897", "lastModified": "2024-11-21T09:08:34.397", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-03-28T14:15:14.557", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq"}, {"source": "security-advisories@github.com", "url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8"}, {"source": "security-advisories@github.com", "url": "https://issue-tracker.miraheze.org/F3093343"}, {"source": "security-advisories@github.com", "url": "https://issue-tracker.miraheze.org/T11999"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/miraheze/CreateWiki/security/advisories/GHSA-4rcf-3cj2-46mq"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/miraheze/mw-config/commit/fb3e68bcef459e9cf2a415241b28042a6c9727e8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://issue-tracker.miraheze.org/F3093343"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://issue-tracker.miraheze.org/T11999"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "security-advisories@github.com", "type": "Secondary"}]}