GHSA-86rg-pf4c-5grg

Suggest an improvement
Source
https://github.com/advisories/GHSA-86rg-pf4c-5grg
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/01/GHSA-86rg-pf4c-5grg/GHSA-86rg-pf4c-5grg.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-86rg-pf4c-5grg
Aliases
  • CVE-2023-6944
Published
2024-01-04T12:30:20Z
Modified
2024-02-05T18:26:44.352593Z
Severity
  • 7.3 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N CVSS Calculator
Summary
@backstage/backend-app-api leaks GitLab access tokens
Details

A flaw was found in the Red Hat Developer Hub (RHDH). The catalog-import function leaks GitLab access tokens on the frontend when the base64 encoded GitLab token includes a newline at the end of the string. The sanitized error can display on the frontend, including the raw access token. Upon gaining access to this token and depending on permissions, an attacker could push malicious code to repositories, delete resources in Git, revoke or generate new keys, and sign code illegitimately.

References

Affected packages

npm / @backstage/backend-app-api

Package

Name
@backstage/backend-app-api
View open source insights on deps.dev
Purl
pkg:npm/%40backstage/backend-app-api

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.9-next.1