CVE-2023-34047

A batch loader function in Spring for GraphQL versions 1.1.0 - 1.1.5 and 1.2.0 - 1.2.2 may be exposed to GraphQL context with values, including security context values, from a different session. An application is vulnerable if it provides a DataLoaderOptions instance when registering batch loader functions through DefaultBatchLoaderRegistry.

CVSS v3 3.1 LOW

3.1^/10

CVSS v3 : LOW

Vector :

Exploitability : 1.6 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://spring.io/security/cve-2023-34047	Vendor Advisory
https://spring.io/security/cve-2023-34047	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:vmware:spring_for_graphql::::::::
	cpe:2.3:a:vmware:spring_for_graphql::::::::

History

21 Nov 2024, 08:06

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~4.3~~	v2 : unknown v3 : 3.1
References	~~() https://spring.io/security/cve-2023-34047 - Vendor Advisory~~	() https://spring.io/security/cve-2023-34047 - Vendor Advisory

18 Oct 2023, 18:04

Type	Values Removed	Values Added
CPE	cpe:2.3:a:spring:spring::::::graphql::*	cpe:2.3:a:vmware:spring_for_graphql::::::::
First Time		Vmware spring For Graphql Vmware

26 Sep 2023, 14:13

Type	Values Removed	Values Added
References	~~(MISC) https://spring.io/security/cve-2023-34047 -~~	(MISC) https://spring.io/security/cve-2023-34047 - Vendor Advisory
CPE		cpe:2.3:a:spring:spring::::::graphql::*
CWE		NVD-CWE-noinfo
First Time		Spring Spring spring
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3

20 Sep 2023, 10:48

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-20 10:15

Updated : 2024-11-21 08:06

NVD link : CVE-2023-34047

Mitre link : CVE-2023-34047

CVE.ORG link : CVE-2023-34047

JSON object : View

Products Affected

vmware

spring_for_graphql

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-34047", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@vmware.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.1, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 1.6}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2023-09-20T10:15:14.247", "references": [{"url": "https://spring.io/security/cve-2023-34047", "tags": ["Vendor Advisory"], "source": "security@vmware.com"}, {"url": "https://spring.io/security/cve-2023-34047", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "A batch loader function in Spring for GraphQL versions 1.1.0 - 1.1.5 and 1.2.0 - 1.2.2 may be exposed to GraphQL context with values, including security context values, from a different session. An application is vulnerable if it provides a DataLoaderOptions\u00a0instance when registering batch loader functions through DefaultBatchLoaderRegistry.\n"}, {"lang": "es", "value": "Una funci\u00f3n de cargador por lotes en Spring para las versiones GraphQL 1.1.0 - 1.1.5 y 1.2.0 - 1.2.2 puede estar expuesta al contexto GraphQL con valores, incluidos valores de contexto de seguridad, de una sesi\u00f3n diferente. Una aplicaci\u00f3n es vulnerable si proporciona una instancia de DataLoaderOptions al registrar funciones del cargador por lotes a trav\u00e9s de DefaultBatchLoaderRegistry."}], "lastModified": "2024-11-21T08:06:28.197", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:spring_for_graphql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49D2097C-3900-4B29-9308-9F9649B2EF1C", "versionEndIncluding": "1.1.5", "versionStartIncluding": "1.1.0"}, {"criteria": "cpe:2.3:a:vmware:spring_for_graphql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FE36EDA-2CA3-4390-BF83-E532BAEA7807", "versionEndIncluding": "1.2.2", "versionStartIncluding": "1.2.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@vmware.com"}