MEDIUM🇵🇱 Wersja polska

CVE-2023-41327

CVSS 4.6v3.1pub. 2023-09-06upd. 2024-11-21

WireMock is a tool for mocking HTTP services. WireMock can be configured to only permit proxying (and therefore recording) to certain addresses. This is achieved via a list of allowed address rules and a list of denied address rules, where the allowed list is evaluated first. Until WireMock Webhooks Extension 3.0.0-beta-15, the filtering of target addresses from the proxy mode DID NOT work for Webhooks, so the users were potentially vulnerable regardless of the `limitProxyTargets` settings. Via the WireMock webhooks configuration, POST requests from a webhook might be forwarded to an arbitrary service reachable from WireMock’s instance. For example, If someone is running the WireMock docker Container inside a private cluster, they can trigger internal POST requests against unsecured APIs or even against secure ones by passing a token, discovered using another exploit, via authentication headers. This issue has been addressed in versions 2.35.1 and 3.0.3 of wiremock. Wiremock studio has been discontinued and will not see a fix. Users unable to upgrade should use external firewall rules to define the list of permitted destinations.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
  • Wiremock Studio

    APP
    Wiremock
    ≤ 2.32.0-17
  • Wiremock

    APP
    Wiremock
    2.0.0 – 2.35.1 (bez)3.0.0 – 3.0.3 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
FirewallContainer
CWE
References

Related vulnerabilities

CVE-2023-39967CRITICAL10.0ten sam produkt

WireMock is a tool for mocking HTTP services. When certain request URLs like “@127.0.0.1:1234" are used in Wir...

CVE-2018-9116CRITICAL9.1ten sam produkt

An XXE vulnerability within WireMock before 2.16.0 allows a remote unauthenticated attacker to access local fi...

CVE-2023-50069MEDIUM6.1ten sam produkt

WireMock with GUI versions 3.2.0.0 through 3.0.4.0 are vulnerable to stored cross-site scripting (SXSS) throug...

CVE-2018-9117MEDIUM5.3ten sam produkt

WireMock before 2.16.0 contains a vulnerability that allows a remote unauthenticated attacker to access local ...

CVE-2023-41329LOW3.9ten sam produkt

WireMock is a tool for mocking HTTP services. The proxy mode of WireMock, can be protected by the network rest...