QwikSec

Security Database

CVE

CWE

Training

CVE-2023-36829

Published: Jul 6, 2023

Modified: Nov 6, 2024

PUBLISHED

CVSS v3.1

6.8

MEDIUM

Description

Sentry is an error tracking and performance monitoring platform. Starting in version 23.6.0 and prior to version 23.6.2, the Sentry API incorrectly returns the `access-control-allow-credentials: true` HTTP header if the `Origin` request header ends with the `system.base-hostname` option of Sentry installation. This only affects installations that have `system.base-hostname` option explicitly set, as it is empty by default. Impact is limited since recent versions of major browsers have cross-site cookie blocking enabled by default. However, this flaw could allow other multi-step attacks. The patch has been released in Sentry 23.6.2.

Vendor	Product	Versions
getsentry	sentry	affected `>= 23.6.0, < 23.6.2`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

References

https://github.com/getsentry/sentry/security/advisories/GHSA-4xqm-4p72-87h6

x_refsource_CONFIRM

https://github.com/getsentry/sentry/pull/52276

x_refsource_MISC

https://github.com/getsentry/sentry/commit/ee44c6be35e5e464bc40637580f39867898acd8b

x_refsource_MISC

https://github.com/getsentry/self-hosted/releases/tag/23.6.2

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.