CVE-2021-39192

Ghost is a Node.js content management system. An error in the implementation of the limits service between versions 4.0.0 and 4.9.4 allows all authenticated users (including contributors) to view admin-level API keys via the integrations API endpoint, leading to a privilege escalation vulnerability. This issue is patched in Ghost version 4.10.0. As a workaround, disable all non-Administrator accounts to prevent API access. It is highly recommended to regenerate all API keys after patching or applying the workaround.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
GitHub_MCNA
6.5 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
VendorProductVersion
ghostghost
4.0.0 ≤
𝑥
< 4.10.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/TryGhost/Ghost/releases/tag/v4.10.0
https://github.com/TryGhost/Ghost/security/advisories/GHSA-j5c2-hm46-wp5c
https://github.com/TryGhost/Ghost/releases/tag/v4.10.0
https://github.com/TryGhost/Ghost/security/advisories/GHSA-j5c2-hm46-wp5c