Permissions, Privileges, and Access Controls in sentry

#VU79013 Permissions, Privileges, and Access Controls in sentry

Published: 2023-08-07

Vulnerability identifier: #VU79013

Vulnerability risk: Medium

CVSSv3.1: 5.6 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-39349

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
sentry
Other software / Other software solutions

Vendor: Sentry

Description

The vulnerability allows a remote user to escalate privileges within the application.

The vulnerability exists due to excessive data output by the "/api/0/api-tokens/" API endpoint. A remote user with access to a token with few or no scopes can query the "/api/0/api-tokens/" URL and list all tokens created by a user, including tokens with greater scopes, and use those tokens in other requests.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

sentry: 22.1.0 - 23.7.1

External links
http://github.com/getsentry/sentry/security/advisories/GHSA-9jcq-jf57-c62c

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Privilege escalation in Sentry