CVE-2023-30613 — HIGH (8.1)

Q: How severe is CVE-2023-30613?

CVE-2023-30613 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-30613?

Check the references section above for vendor advisories and patch information. Affected products include: Kiwitcms Kiwi Tcms.

Vulnerability Description

Kiwi TCMS, an open source test management system, allows users to upload attachments to test plans, test cases, etc. In versions of Kiwi TCMS prior to 12.2, there is no control over what kinds of files can be uploaded. Thus, a malicious actor may upload an `.exe` file or a file containing embedded JavaScript and trick others into clicking on these files, causing vulnerable browsers to execute malicious code on another computer. Kiwi TCMS v12.2 comes with functionality that allows administrators to configure additional upload validator functions which give them more control over what file types are accepted for upload. By default `.exe` are denied. Other files containing the `<script>` tag, regardless of their type are also denied b/c they are a path to XSS attacks. There are no known workarounds aside from upgrading.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Kiwitcms	Kiwi Tcms	< 12.2

Related Weaknesses (CWE)

CWE-434

References

https://github.com/kiwitcms/Kiwi/security/advisories/GHSA-fwcf-753v-fgcjVendor Advisory
https://huntr.dev/bounties/c30d3503-600d-4d00-9571-98826a51f12cPermissions Required
https://kiwitcms.org/blog/kiwi-tcms-team/2023/04/23/kiwi-tcms-122/Release Notes
https://github.com/kiwitcms/Kiwi/security/advisories/GHSA-fwcf-753v-fgcjVendor Advisory
https://huntr.dev/bounties/c30d3503-600d-4d00-9571-98826a51f12cPermissions Required
https://kiwitcms.org/blog/kiwi-tcms-team/2023/04/23/kiwi-tcms-122/Release Notes
https://huntr.com/bounties/c30d3503-600d-4d00-9571-98826a51f12cExploitThird Party Advisory

FAQ

What is CVE-2023-30613?

CVE-2023-30613 is a vulnerability with a CVSS score of 8.1 (HIGH). Kiwi TCMS, an open source test management system, allows users to upload attachments to test plans, test cases, etc. In versions of Kiwi TCMS prior to 12.2, there is no control over what kinds of file...

How severe is CVE-2023-30613?

CVE-2023-30613 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-30613?

Check the references section above for vendor advisories and patch information. Affected products include: Kiwitcms Kiwi Tcms.