CVE-2024-1143

Descriptions

Central Dogma versions prior to 0.64.1 is vulnerable to Cross-Site Scripting (XSS), which could allow for the leakage of user sessions and subsequent authentication bypass.

Severity

CVSS Score: 9.3

Affected Versions

Central Dogma prior to 0.64.1

Fix

Central Dogma should be updated to latest version (>= 0.64.1).

Reference

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1143
https://github.com/line/centraldogma/security/advisories/GHSA-34q3-p352-c7q8

Twitter Facebook LinkedIn