Threats Tagged 'cwe-524'

Ghost is a Node.js content management system. From until 6.37.0, when Ghost is behind a shared caching layer that results in cached content being shared between different visitors, an unauthenticated user could send an x-ghost-preview header that altered the rendered frontend response. In affected cache configurations, that response could be stored and served to subsequent visitors requesting the same page, allowing cache poisoning of request-specific preview output. When running Ghost's frontend and admin panel on the same domain this could be used to take over staff user accounts. When running these on different domains staff accounts have no exposure. This vulnerability is fixed in 6.37.0.

Spring Framework versions 5.3.0 through 5.3.48, 6.1.0 through 6.1.27, 6.2.0 through 6.2.18, and 7.0.0 through 7.0.7 are vulnerable to an information disclosure issue related to the use of cache containing sensitive information when resolving static resources in Spring MVC and WebFlux applications. This vulnerability can aid in security bypass by exposing sensitive cached data. The CVSS score is 5.9, indicating a medium severity level.

Django versions 5.2 before 5.2.15 and 6.0 before 6.0.6 have a vulnerability in the UpdateCacheMiddleware where the Authorization header is not added to the Vary response header for requests that include it without Cache-Control: public. This can allow remote attackers to access private cached responses via unauthenticated requests to the same URL. Earlier unsupported Django versions may also be affected. The issue has a low severity score and no known exploits in the wild.

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.15.24. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHSA-2024:4853 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes: https://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html Security Fix(es): * coredns: CD bit response is cached and served later (CVE-2024-0874) * containers/image: digest type does not guarantee valid type (CVE-2024-3727) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.15 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html