CVE-2023-48296 - Vulnerability Details - OpenCVE

OroPlatform is a PHP Business Application Platform (BAP). Navigation history, most viewed and favorite navigation items are returned to storefront user in JSON navigation response if ID of storefront user matches ID of back-office user. This vulnerability is fixed in 5.1.4.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Oroinc	Oroplatform

Configuration 1 [-]

cpe:2.3:a:oroinc:oroplatform:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8
https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp

History

Mon, 10 Mar 2025 15:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Oroinc Oroinc oroplatform
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:a:oroinc:oroplatform::::::::
Vendors & Products		Oroinc Oroinc oroplatform

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-03-25T18:19:43.561Z

Updated: 2024-08-02T21:23:39.499Z

Reserved: 2023-11-14T17:41:15.570Z

Link: CVE-2023-48296

Vulnrichment

Updated: 2024-08-02T21:23:39.499Z

NVD

Status : Analyzed

Published: 2024-03-25T19:15:57.300

Modified: 2025-03-10T14:59:09.437

Link: CVE-2023-48296

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-48296", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-11-14T17:41:15.570Z", "datePublished": "2024-03-25T18:19:43.561Z", "dateUpdated": "2024-08-02T21:23:39.499Z"}, "containers": {"cna": {"title": "OroPlatform's storefront user can access history and most viewed data from matching back-office user with the same ID", "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "lang": "en", "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp"}, {"name": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "tags": ["x_refsource_MISC"], "url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8"}], "affected": [{"vendor": "oroinc", "product": "orocommerce", "versions": [{"version": ">=4.1.0, <=4.1.13", "status": "affected"}, {"version": ">=4.2.0, <=4.2.10", "status": "affected"}, {"version": ">=5.0.0, <=5.0.11", "status": "affected"}, {"version": ">=5.1.0, <=5.1.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-25T18:19:43.561Z"}, "descriptions": [{"lang": "en", "value": "OroPlatform is a PHP Business Application Platform (BAP). Navigation history, most viewed and favorite navigation items are returned to storefront user in JSON navigation response if ID of storefront user matches ID of back-office user. This vulnerability is fixed in 5.1.4.\n"}], "source": {"advisory": "GHSA-v7px-46v9-5qwp", "discovery": "UNKNOWN"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-48296", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-01T19:44:56.267074Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:27:34.578Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:23:39.499Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp"}, {"name": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "name": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "name": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:23:39.499Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-48296", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-01T19:44:56.267074Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:20.865Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "OroPlatform's storefront user can access history and most viewed data from matching back-office user with the same ID", "source": {"advisory": "GHSA-v7px-46v9-5qwp", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "oroinc", "product": "orocommerce", "versions": [{"status": "affected", "version": ">=4.1.0, <=4.1.13"}, {"status": "affected", "version": ">=4.2.0, <=4.2.10"}, {"status": "affected", "version": ">=5.0.0, <=5.0.11"}, {"status": "affected", "version": ">=5.1.0, <=5.1.3"}]}], "references": [{"url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "name": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "name": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "OroPlatform is a PHP Business Application Platform (BAP). Navigation history, most viewed and favorite navigation items are returned to storefront user in JSON navigation response if ID of storefront user matches ID of back-office user. This vulnerability is fixed in 5.1.4.\n"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-03-25T18:19:43.561Z"}}}, "cveMetadata": {"cveId": "CVE-2023-48296", "state": "PUBLISHED", "dateUpdated": "2024-08-02T21:23:39.499Z", "dateReserved": "2023-11-14T17:41:15.570Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-03-25T18:19:43.561Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oroinc:oroplatform:*:*:*:*:*:*:*:*", "matchCriteriaId": "434D6C2A-C8EA-4667-99BB-564738EC3D0E", "versionEndExcluding": "5.1.4", "versionStartIncluding": "4.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "OroPlatform is a PHP Business Application Platform (BAP). Navigation history, most viewed and favorite navigation items are returned to storefront user in JSON navigation response if ID of storefront user matches ID of back-office user. This vulnerability is fixed in 5.1.4.\n"}, {"lang": "es", "value": "OroPlatform es una plataforma de aplicaciones empresariales (BAP) PHP. El historial de navegaci\u00f3n y los elementos de navegaci\u00f3n m\u00e1s vistos y favoritos se devuelven al usuario de la tienda en la respuesta de navegaci\u00f3n JSON si el ID del usuario de la tienda coincide con el ID del usuario de la oficina administrativa. Esta vulnerabilidad se soluciona en 5.1.4."}], "id": "CVE-2023-48296", "lastModified": "2025-03-10T14:59:09.437", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-03-25T19:15:57.300", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/oroinc/orocommerce/commit/41c526498012d44cd88852c63697f1ef53b61db8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/oroinc/orocommerce/security/advisories/GHSA-v7px-46v9-5qwp"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}