ByteOS Network

Vulnerability Details :

CVE-2023-43798

Assigner Org ID-a0819718-46f1-4df5-94e2-005712e83aaa

Published At-30 Oct, 2023 | 22:24

Updated At-05 Sep, 2024 | 20:19

BigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass)

BigBlueButton is an open-source virtual classroom. BigBlueButton prior to versions 2.6.12 and 2.7.0-rc.1 is vulnerable to Server-Side Request Forgery (SSRF). This issue is a bypass of CVE-2023-33176. A patch in versions 2.6.12 and 2.7.0-rc.1 disabled follow redirect at `httpclient.execute` since the software no longer has to follow it when using `finalUrl`. There are no known workarounds. We recommend upgrading to a patched version of BigBlueButton.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:GitHub_M

Assigner Org ID:a0819718-46f1-4df5-94e2-005712e83aaa

Published At:30 Oct, 2023 | 22:24

Updated At:05 Sep, 2024 | 20:19

▼CVE Numbering Authority (CNA)

BigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass)

Affected Products

Vendor

bigbluebutton

Product

bigbluebutton

Versions

Affected

< 2.6.12
>= 2.7.0-alpha.1, < 2.7.0-rc.1

Problem Types

Type	CWE ID	Description
CWE	CWE-918	CWE-918: Server-Side Request Forgery (SSRF)

Type: CWE

CWE ID: CWE-918

Description: CWE-918: Server-Side Request Forgery (SSRF)

Metrics

Version	Base score	Base severity	Vector
3.1	5.6	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Version: 3.1

Base score: 5.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

References

Hyperlink	Resource
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4	x_refsource_CONFIRM
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7	x_refsource_MISC
https://github.com/bigbluebutton/bigbluebutton/pull/18494	x_refsource_MISC
https://github.com/bigbluebutton/bigbluebutton/pull/18580	x_refsource_MISC

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4

Resource:

x_refsource_CONFIRM

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7

Resource:

x_refsource_MISC

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18494

Resource:

x_refsource_MISC

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18580

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4	x_refsource_CONFIRM x_transferred
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7	x_refsource_MISC x_transferred
https://github.com/bigbluebutton/bigbluebutton/pull/18494	x_refsource_MISC x_transferred
https://github.com/bigbluebutton/bigbluebutton/pull/18580	x_refsource_MISC x_transferred

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18494

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18580

Resource:

x_refsource_MISC

x_transferred

2. CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:security-advisories@github.com

Published At:30 Oct, 2023 | 23:15

Updated At:08 Nov, 2023 | 20:12

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Secondary	3.1	5.6	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Type: Primary

Version: 3.1

Base score: 5.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Type: Secondary

Version: 3.1

Base score: 5.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-918	Primary	security-advisories@github.com

CWE ID: CWE-918

Type: Primary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/bigbluebutton/bigbluebutton/pull/18494	security-advisories@github.com	Third Party Advisory
https://github.com/bigbluebutton/bigbluebutton/pull/18580	security-advisories@github.com	Third Party Advisory
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7	security-advisories@github.com	Third Party Advisory
https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4	security-advisories@github.com	Third Party Advisory

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18494

Source: security-advisories@github.com

Resource:

Third Party Advisory

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/pull/18580

Source: security-advisories@github.com

Resource:

Third Party Advisory

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-3q22-hph2-cff7

Source: security-advisories@github.com

Resource:

Third Party Advisory

Hyperlink: https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-h98v-2h8w-99c4

Source: security-advisories@github.com

Resource:

Third Party Advisory

Similar CVEs

55Records found

CVE-2023-35011

Matching Score-4

Assigner-IBM Corporation

View Details

Matching Score-4

Assigner-IBM Corporation

CVSS Score-5.4||MEDIUM

EPSS-0.05% / 16.34%

7 Day CHG~0.00%

Published-16 Aug, 2023 | 22:46

Updated-13 Feb, 2025 | 16:55

IBM Cognos Analytics server-side request forgey

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 257705.

Vendor-IBM Corporation

Product-cognos_analytics Cognos Analytics

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-45843

Matching Score-4

Assigner-Mattermost, Inc.

View Details

Matching Score-4

Assigner-Mattermost, Inc.

CVSS Score-3.1||LOW

EPSS-0.07% / 22.00%

7 Day CHG~0.00%

Published-26 Sep, 2024 | 08:03

Updated-26 Sep, 2024 | 18:42

Weak SSRF Filtering

Mattermost versions 9.5.x <= 9.5.8 fail to include the metadata endpoints of Oracle Cloud and Alibaba in the SSRF denylist, which allows an attacker to possibly cause an SSRF if Mattermost was deployed in Oracle Cloud or Alibaba.

Vendor-Mattermost, Inc.

Product-mattermost_server Mattermost

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-39739

Matching Score-4

Assigner-IBM Corporation

View Details

Matching Score-4

Assigner-IBM Corporation

CVSS Score-5.4||MEDIUM

EPSS-0.08% / 23.64%

7 Day CHG~0.00%

Published-15 Jul, 2024 | 01:25

Updated-02 Aug, 2024 | 04:26

IBM Datacap Navigator server-side request forgery

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 296008.

Vendor-IBM Corporation

Product-datacap datacap_navigator Datacap Navigator

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2021-20535

Matching Score-4

Assigner-IBM Corporation

View Details

Matching Score-4

Assigner-IBM Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.09% / 27.28%

7 Day CHG~0.00%

Published-13 May, 2021 | 15:30

Updated-16 Sep, 2024 | 18:13

IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 198834.

Vendor-IBM Corporation

Product-jazz_reporting_service Jazz Reporting Service

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2024-32812

Matching Score-4

Assigner-Patchstack

View Details

Matching Score-4

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.07% / 22.70%

7 Day CHG~0.00%

Published-24 Apr, 2024 | 07:14

Updated-19 Mar, 2025 | 18:08

WordPress Podlove Podcast Publisher plugin <= 4.0.11 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue affects Podlove Podcast Publisher: from n/a through 4.0.11.

Vendor-podlove Podlove podlove

Product-podlove_podcast_publisher Podlove Podcast Publisher podlove_podcast_publisher

CWE ID-CWE-918

Server-Side Request Forgery (SSRF)

CVE-2023-43798

Credits

BigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass)

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs