Vulnerability Description
An issue was discovered in REDCap 8.11.6 through 9.x before 10. The messenger's CSV feature (that allows users to export their conversation threads as CSV) allows non-privileged users to export one another's conversation threads by changing the thread_id parameter in the request to the endpoint Messenger/messenger_download_csv.php?title=Hey&thread_id={THREAD_ID}.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vanderbilt | Redcap | >= 8.11.6, < 10.0 |
Related Weaknesses (CWE)
References
- https://github.com/seb1055/cve-2020-27358-27359ExploitThird Party Advisory
- https://www.evms.edu/research/resources_services/redcap/redcap_change_log/ExploitVendor Advisory
- https://www.ruse.tech/blog/38Third Party Advisory
- https://github.com/seb1055/cve-2020-27358-27359ExploitThird Party Advisory
- https://www.evms.edu/research/resources_services/redcap/redcap_change_log/ExploitVendor Advisory
- https://www.ruse.tech/blog/38Third Party Advisory
FAQ
What is CVE-2020-27358?
CVE-2020-27358 is a vulnerability with a CVSS score of 4.3 (MEDIUM). An issue was discovered in REDCap 8.11.6 through 9.x before 10. The messenger's CSV feature (that allows users to export their conversation threads as CSV) allows non-privileged users to export one an...
How severe is CVE-2020-27358?
CVE-2020-27358 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-27358?
Check the references section above for vendor advisories and patch information. Affected products include: Vanderbilt Redcap.