Vulnerability Description
Discourse is an open source platform for community discussion. This vulnerability is not exploitable on the default install of Discourse. A custom feature must be enabled for it to work at all, and the attacker’s payload must pass the CSP to be executed. However, if an attacker succeeds in embedding Javascript that does pass the CSP, it could result in session hijacking for any users that view the attacker’s post. The vulnerability is patched in the latest tests-passed, beta and stable branches. Users are advised to upgrade. Users unable to upgrade should enable and/or restore your site's CSP to the default one provided with Discourse. Remove any embed-able hosts configured.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Discourse | Discourse | < 3.0.3 |
Related Weaknesses (CWE)
References
- https://github.com/discourse/discourse/security/advisories/GHSA-986p-4x8q-8f48Third Party Advisory
- https://github.com/discourse/discourse/security/advisories/GHSA-986p-4x8q-8f48Third Party Advisory
FAQ
What is CVE-2023-29196?
CVE-2023-29196 is a vulnerability with a CVSS score of 4.2 (MEDIUM). Discourse is an open source platform for community discussion. This vulnerability is not exploitable on the default install of Discourse. A custom feature must be enabled for it to work at all, and th...
How severe is CVE-2023-29196?
CVE-2023-29196 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-29196?
Check the references section above for vendor advisories and patch information. Affected products include: Discourse Discourse.