GHSA-rgg8-g5x8-wr9v

Suggest an improvement
Source
https://github.com/advisories/GHSA-rgg8-g5x8-wr9v
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/09/GHSA-rgg8-g5x8-wr9v/GHSA-rgg8-g5x8-wr9v.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-rgg8-g5x8-wr9v
Aliases
Published
2024-09-25T18:13:35Z
Modified
2024-10-15T17:29:14Z
Severity
  • 7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N CVSS Calculator
  • 5.1 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N CVSS Calculator
Summary
Cross-site scripting (XSS) in the clipboard package
Details

Impact

During a recent internal audit, we identified a Cross-Site Scripting (XSS) vulnerability in the CKEditor 5 clipboard package. This vulnerability could be triggered by a specific user action, leading to unauthorized JavaScript code execution, if the attacker managed to insert a malicious content into the editor, which might happen with a very specific editor configuration.

This vulnerability affects only installations where the editor configuration meets the following criteria:

  1. The Block Toolbar plugin is enabled.
  2. One of the following plugins is also enabled:

Patches

The problem has been recognized and patched. The fix will be available in version 43.1.1 (and above), and explicitly in version 41.3.2.

Workarounds

It's highly recommended to update to the version 43.1.1 or higher. However, if the update is not an option, we recommend disabling the block toolbar plugin.

For more information

Email us at security@cksource.com if you have any questions or comments about this advisory.

Database specific
{
    "nvd_published_at": "2024-09-25T14:15:05Z",
    "cwe_ids": [
        "CWE-79"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2024-09-25T18:13:35Z"
}
References

Affected packages

npm / ckeditor5

Package

Affected ranges

Type
SEMVER
Events
Introduced
40.0.0
Fixed
43.1.1

npm / @ckeditor/ckeditor5-clipboard

Package

Name
@ckeditor/ckeditor5-clipboard
View open source insights on deps.dev
Purl
pkg:npm/%40ckeditor/ckeditor5-clipboard

Affected ranges

Type
SEMVER
Events
Introduced
40.0.0
Fixed
43.1.1