Sensitive Data Exposure Vulnerability in Strapi by Strapi
CVE-2023-22894

4.9MEDIUM

Key Information:

Vendor: Strapi
Status: Strapi
Vendor: CVE Published:; 19 April 2023

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 16%

What is CVE-2023-22894?

Strapi versions up to 4.5.5 are susceptible to a vulnerability that allows an attacker with access to the admin panel to uncover sensitive user details. This can occur through the exploitation of the query filter, enabling the attacker to filter user data fields and deduce sensitive information from API responses. If the attacker holds super admin privileges, they could potentially access critical information such as password hashes and password reset tokens for all users. Furthermore, an attacker with admin panel access to a user account may also retrieve sensitive information related to lower-privileged roles, like Editors or Authors, without risking other admin accounts.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2023-22894
Created by Saboor-Hakimi

References

https://github.com/strapi/strapi/releases

https://www.ghostccamm.com/blog/multi_strapi_vulns/

https://strapi.io/blog/security-disclosure-of-vulnerabili...

EPSS Score

16% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Apr 24, 2023
👾
Exploit known to exist
Apr 24, 2023
Vulnerability published
Apr 19, 2023
Vulnerability Reserved
Jan 10, 2023

CVE-2023-22894 Data

JSON