QID 154120

Date Published: 2022-07-21

QID 154120: Drupal Core: Guzzle Library Information Disclosure Vulnerability (CVE-2022-29248)

Drupal is a free and open source content management framework written in PHP and distributed under the GNU General Public License.

Drupal uses the third-party Guzzle library for handling HTTP requests and responses to external services. Guzzle contains a vulnerability with the cookie middleware. The vulnerability is that it is not checked if the cookie domain equals the domain of the server which sets the cookie via the Set-Cookie header, allowing a malicious server to set cookies for unrelated domains.

Affected Versions:
Drupal 9.2.0 to 9.2.20
Drupal 9.3.0 to 9.3.13

QID Detection Logic:(Unauthenticated)
This QID checks for vulnerable version of Drupal installed on the target.

Successful exploitation would lead to Information Disclosure vulnerability, which can help the attacker carry out further attacks and obtain sensitive information.

  • CVSS V3 rated as Critical - 8.1 severity.
  • CVSS V2 rated as Medium - 5.8 severity.
    • Solution
    Customers are advised to install latest Drupal version.
    For more information visit Drupal security advisory SA-CORE-2022-010.
    Vendor References

    CVEs related to QID 154120

    CVE-2022-29248 |
    Software Advisories
    Advisory ID Software Component Link
    SA-CORE-2022-010 URL Logo www.drupal.org/sa-core-2022-010
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].