#VU87679 Stored cross-site scripting in mod_cluster - CVE-2023-6710

Cybersecurity Help s.r.o.

Published: 2024-03-20 | Updated: 2024-10-25

Vulnerability identifier: #VU87679

Vulnerability risk: Medium

CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Green]

CVE-ID: CVE-2023-6710

CWE-ID: CWE-79

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
mod_cluster
Universal components / Libraries / Programming Languages & Components

Vendor: modcluster

Description

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data passed via the "alias" parameter in he URL. A remote attacker can permanently inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

mod_cluster: 1.3.0 - 1.3.19

External links
https://bugzilla.redhat.com/show_bug.cgi?id=2254128

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Red Hat Enterprise Linux 9 update for mod_jk and mod_proxy_cluster

Multiple vulnerabilities in IBM Rational Build Forge

Multiple vulnerabilities in Red Hat JBoss Core Services for RHEL 7 and 8

Multiple vulnerabilities in Red Hat JBoss Core Services Apache HTTP Server 2.4

Stored XSS in mod_cluster for Apache HTTP Server