Vulnerability Description
Saleor is a headless, GraphQL commerce platform. In affected versions some GraphQL mutations were not properly checking the ID type input which allowed to access database objects that the authenticated user may not be allowed to access. This vulnerability can be used to expose the following information: Estimating database row counts from tables with a sequential primary key or Exposing staff user and customer email addresses and full name through the `assignNavigation()` mutation. This issue has been patched in main and backported to multiple releases (3.7.17, 3.6.18, 3.5.23, 3.4.24, 3.3.26, 3.2.14, 3.1.24). Users are advised to upgrade. There are no known workarounds for this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Saleor | Saleor | >= 2.0.0, < 3.1.24 |
Related Weaknesses (CWE)
References
- https://github.com/saleor/saleor/commit/96e04c092ddcac17b14f2e31554aa02d9006d0cePatchThird Party Advisory
- https://github.com/saleor/saleor/security/advisories/GHSA-xhq8-8c5v-w8ffThird Party Advisory
- https://github.com/saleor/saleor/commit/96e04c092ddcac17b14f2e31554aa02d9006d0cePatchThird Party Advisory
- https://github.com/saleor/saleor/security/advisories/GHSA-xhq8-8c5v-w8ffThird Party Advisory
FAQ
What is CVE-2022-39275?
CVE-2022-39275 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Saleor is a headless, GraphQL commerce platform. In affected versions some GraphQL mutations were not properly checking the ID type input which allowed to access database objects that the authenticate...
How severe is CVE-2022-39275?
CVE-2022-39275 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-39275?
Check the references section above for vendor advisories and patch information. Affected products include: Saleor Saleor.