CVE-2022-31132 Unauthenticated SSRF in 3rd party module "cerdic/csstidy"

2022-08-0417:10:10

CWE-918

GitHub_M

www.cve.org

cve-2022-31132

unauthenticated ssrf

nextcloud mail

css minifier

server-side request forgery

update

manual deletion

CVSS3

8.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

AI Score

9.8

Confidence

High

EPSS

0.002

Percentile

58.3%

JSON

Nextcloud Mail is an email application for the nextcloud personal cloud product. Affected versions shipped with a CSS minifier on the path ./vendor/cerdic/css-tidy/css_optimiser.php. Access to the minifier is unrestricted and access may lead to Server-Side Request Forgery (SSRF). It is recommendet to upgrade to Mail 1.12.7 or Mail 1.13.6. Users unable to upgrade may manually delete the file located at ./vendor/cerdic/css-tidy/css_optimiser.php

CNA Affected

[
  {
    "product": "security-advisories",
    "vendor": "nextcloud",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.12.8"
      },
      {
        "status": "affected",
        "version": ">= 1.13.0, < 1.13.6"
      }
    ]
  }
]