XSS vulnerability in @backstage/plugin-auth-backend
CVE-2021-43776

7.4HIGH

Key Information:

Vendor: Backstage
Status: Backstage
Vendor: CVE Published:; 26 November 2021

What is CVE-2021-43776?

Backstage is an open platform for building developer portals. In affected versions the auth-backend plugin allows a malicious actor to trick another user into visiting a vulnerable URL that executes an XSS attack. This attack can potentially allow the attacker to exfiltrate access tokens or other secrets from the user's browser. The default CSP does prevent this attack, but it is expected that some deployments have these policies disabled due to incompatibilities. This is vulnerability is patched in version 0.4.9 of @backstage/plugin-auth-backend.

Affected Version(s)

backstage < 0.4.9

References

https://github.com/backstage/backstage/security/advisorie...

x_refsource_CONFIRM

https://github.com/backstage/backstage/tree/master/plugin...

x_refsource_MISC

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 26, 2021
Vulnerability Reserved
Nov 16, 2021