Headline
CVE-2022-31095
discourse-chat is a chat plugin for the Discourse application. Versions prior to 0.4 are vulnerable to an exposure of sensitive information, where an attacker who knows the message ID for a channel they do not have access to can view that message using the chat message lookup endpoint, primarily affecting direct message channels. There are no known workarounds for this issue, and users are advised to update the plugin.
Chat message lookup did not check channel access
Moderate
ZogStriP published GHSA-r979-jhp2-3f6h
Jun 21, 2022
Package
discourse-chat (Discourse)
Affected versions
stable <= 0.3
Patched versions
stable >= 0.4
Description
Impact
A maliciously-formed request allowed users to view messages they should not be able to see.
Workarounds
None, upgrading the plugin to the latest version is required.
Severity
Moderate
6.5
/ 10
CVSS base metrics
Attack vector
Network
Attack complexity
Low
Privileges required
Low
User interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVE ID
CVE-2022-31095
Weaknesses
CWE-284