Skip to content

Commit 939caa9

Browse files
jasnowRubySec CI
jasnow
authored and
RubySec CI
committed
Updated advisory posts against rubysec/ruby-advisory-db@fb42fad 
1 parent 91a2c5e commit 939caa9

File tree

1 file changed

+54
-0
lines changed

1 file changed

+54
-0
lines changed

advisories/_posts/2024-02-13-CVE-2024-25122.md

Lines changed: 54 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,54 @@
1+
---
2+
layout: advisory
3+
title: 'CVE-2024-25122 (sidekiq-unique-jobs): sidekiq-unique-jobs UI server vulnerable
4+
to XSS & RCE in Redis'
5+
comments: false
6+
categories:
7+
- sidekiq-unique-jobs
8+
advisory:
9+
gem: sidekiq-unique-jobs
10+
cve: 2024-25122
11+
ghsa: cmh9-rx85-xj38
12+
url: https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
13+
title: sidekiq-unique-jobs UI server vulnerable to XSS & RCE in Redis
14+
date: 2024-02-13
15+
description: |
16+
Cross site scripting (XSS) potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7.
17+
18+
### Details
19+
20+
Specially crafted URL query parameters handled by any of the following endpoints of sidekiq-unique-jobs' "admin" web UI,
21+
allow a super-user attacker, or an unwitting, but authorized, victim, who has received a disguised / crafted link,
22+
to successfully execute malicious code, which could potentially steal cookies, session data,
23+
or local storage data from the app the sidekiq-unique-jobs web UI is mounted in.
24+
25+
If your sidekiq-unique-jobs web UI is mounted at `/sidekiq`, the vulnerable paths and query parameters are:
26+
27+
* `/sidekiq/changelogs`
28+
* `filter`
29+
* `count`
30+
* `/sidekiq/locks`
31+
* `filter`
32+
* `count`
33+
* `/sidekiq/expiring_locks`
34+
* `filter`
35+
36+
### Impact
37+
38+
This is a vulnerability of critical severity, which impacts many thousands of sites, since sidekiq-unique-jobs is widely deployed across the industry, with multiple attack vectors.
39+
40+
### Patches
41+
42+
The fix for the XSS vulnerability was released in sidekiq-unique-jobs v8.0.7.
43+
cvss_v3: 7.1
44+
patched_versions:
45+
- "~> 7.1.33"
46+
- ">= 8.0.7"
47+
related:
48+
url:
49+
- https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
50+
- https://github.com/mhenrixon/sidekiq-unique-jobs/commit/cd09ba6108f98973b6649a6149790c3d4502b4cc
51+
- https://github.com/mhenrixon/sidekiq-unique-jobs/commit/ec3afd920c1b55843c72f748a87baac7f8be82ed
52+
- https://nvd.nist.gov/vuln/detail/CVE-2024-25122
53+
- https://github.com/advisories/GHSA-cmh9-rx85-xj38
54+
---

0 commit comments

Comments
 (0)