#VU65358 Information disclosure in semantic-release - CVE-2022-31051

Cybersecurity Help s.r.o.

Published: 2022-07-15

Vulnerability identifier: #VU65358

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-31051

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
semantic-release
Web applications / Modules and components for CMS

Vendor: semantic-release

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to secrets that would normally be masked by semantic-release can be accidentally disclosed if they contain characters that are excluded from uri encoding by encodeURI. A remote attacker can gain unauthorized access to sensitive information on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

semantic-release: 17.0.4

External links
https://github.com/semantic-release/semantic-release/security/advisories/GHSA-x2pg-mjhr-2m5x
https://github.com/semantic-release/semantic-release/commit/58a226f29c04ee56bbb02cc661f020d568849cad
https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/encodeURI
https://github.com/semantic-release/semantic-release/releases/tag/v19.0.3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Red Hat Virtualization Manager