CVE-2023-3550 — Cross-site Scripting in Mediawiki

CWE-79 — Cross-site Scripting5 documents5 sources

Severity

9.0CRITICALNVD

EPSS

0.2%

top 59.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mediawiki Debian Mediawiki Debian Linux

Timeline

PublishedSep 25

Description

Mediawiki v1.40.0 does not validate namespaces used in XML files. Therefore, if the instance administrator allows XML file uploads, a remote attacker with a low-privileged user account can use this exploit to become an administrator by sending a malicious link to the instance administrator.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:HExploitability: 2.3 | Impact: 6.0

Affected Packages3 packages

▶debiandebian/mediawiki< mediawiki 1:1.39.5-1~deb12u1 (bookworm)

▶Debianmediawiki/mediawiki< 1:1.35.13-1~deb11u1+3

▶NVDmediawiki/mediawiki1.40.0

Also affects: Debian Linux 10.0, 11.0

🔴Vulnerability Details

OSV

CVE-2023-3550: Mediawiki v1↗2023-09-25

▶

GHSA

MediaWiki malicious XML upload leads to privilege escalation↗2023-09-25

▶

📋Vendor Advisories

Red Hat

mediawiki: stored XSS leads to privilege escalation↗2023-09-25

▶

Debian

CVE-2023-3550: mediawiki - Mediawiki v1.40.0 does not validate namespaces used in XML files. Therefore, if...↗2023

▶