CVE-2022-3708 — CRITICAL (9.6)

Q: How severe is CVE-2022-3708?

CVE-2022-3708 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2022-3708?

Check the references section above for vendor advisories and patch information. Affected products include: Google Web Stories.

Vulnerability Description

The Web Stories plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including 1.24.0 due to insufficient validation of URLs supplied via the 'url' parameter found via the /v1/hotlink/proxy REST API Endpoint. This makes it possible for authenticated users to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

CVSS Score

9.6

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Google	Web Stories	< 1.25.0

Related Weaknesses (CWE)

CWE-918

References

https://github.com/GoogleForCreators/web-stories-wp/commit/3ad2099f95155d658624fPatchThird Party Advisory
https://github.com/GoogleForCreators/web-stories-wp/compare/v1.24.0...v1.25.0PatchRelease NotesThird Party Advisory
https://wordpress.org/plugins/web-storiesProductRelease NotesThird Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/7817a840-325a-4709-837Third Party Advisory
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-3708Third Party Advisory
https://github.com/GoogleForCreators/web-stories-wp/commit/3ad2099f95155d658624fPatchThird Party Advisory
https://github.com/GoogleForCreators/web-stories-wp/compare/v1.24.0...v1.25.0PatchRelease NotesThird Party Advisory
https://wordpress.org/plugins/web-storiesProductRelease NotesThird Party Advisory
https://www.wordfence.com/threat-intel/vulnerabilities/id/7817a840-325a-4709-837Third Party Advisory
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-3708Third Party Advisory

FAQ

What is CVE-2022-3708?

CVE-2022-3708 is a vulnerability with a CVSS score of 9.6 (CRITICAL). The Web Stories plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including 1.24.0 due to insufficient validation of URLs supplied via the 'url' parameter found ...

How severe is CVE-2022-3708?

CVE-2022-3708 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2022-3708?

Check the references section above for vendor advisories and patch information. Affected products include: Google Web Stories.