CVE-2017-0896 - OpenCVE

Zulip Server 1.5.1 and below suffer from an error in the implementation of the invite_by_admins_only setting in the Zulip group chat application server that allowed an authenticated user to invite other users to join a Zulip organization even if the organization was configured to prevent this.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Zulip	Zulip Server

Configuration 1 [-]

OR	cpe:2.3:a:zulip:zulip_server:1.3.0:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.1:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.2:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.3:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.4:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.6:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.7:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.8:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.9:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.10:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.11:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.12:::::::*
	cpe:2.3:a:zulip:zulip_server:1.3.13:::::::*
	cpe:2.3:a:zulip:zulip_server:1.4.0:::::::*
	cpe:2.3:a:zulip:zulip_server:1.4.1:::::::*
	cpe:2.3:a:zulip:zulip_server:1.4.2:::::::*
	cpe:2.3:a:zulip:zulip_server:1.4.3:::::::*
	cpe:2.3:a:zulip:zulip_server:1.5.0:::::::*
	cpe:2.3:a:zulip:zulip_server:1.5.1:::::::*

References

Link	Resource
https://github.com/zulip/zulip/commit/1f48fa27672170bba3b9a97384905bb04c18761b	Issue Tracking Patch
https://groups.google.com/forum/#%21msg/zulip-announce/sUYeJv-fFmg/2TU2TLmNAwAJ
https://hackerone.com/reports/224210	Permissions Required

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hackerone

Published: 2017-06-02T17:00:00

Updated: 2017-06-02T16:57:01

Reserved: 2016-11-30T00:00:00

Link: CVE-2017-0896

JSON object: View

NVD Information

Status : Modified

Published: 2017-06-02T17:29:00.167

Modified: 2023-11-07T02:37:47.850

Link: CVE-2017-0896

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "Zulip Server", "vendor": "Zulip", "versions": [{"status": "affected", "version": "1.5.1 and below"}]}], "datePublic": "2017-06-01T00:00:00", "descriptions": [{"lang": "en", "value": "Zulip Server 1.5.1 and below suffer from an error in the implementation of the invite_by_admins_only setting in the Zulip group chat application server that allowed an authenticated user to invite other users to join a Zulip organization even if the organization was configured to prevent this."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-285", "description": "Improper Authorization (CWE-285)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2017-06-02T16:57:01", "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone"}, "references": [{"name": "[zulip-announce] 20170601 Zulip Server 1.5.2 released", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://groups.google.com/forum/#%21msg/zulip-announce/sUYeJv-fFmg/2TU2TLmNAwAJ"}, {"tags": ["x_refsource_MISC"], "url": "https://hackerone.com/reports/224210"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/zulip/zulip/commit/1f48fa27672170bba3b9a97384905bb04c18761b"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "support@hackerone.com", "ID": "CVE-2017-0896", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Zulip Server", "version": {"version_data": [{"version_value": "1.5.1 and below"}]}}]}, "vendor_name": "Zulip"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Zulip Server 1.5.1 and below suffer from an error in the implementation of the invite_by_admins_only setting in the Zulip group chat application server that allowed an authenticated user to invite other users to join a Zulip organization even if the organization was configured to prevent this."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Improper Authorization (CWE-285)"}]}]}, "references": {"reference_data": [{"name": "[zulip-announce] 20170601 Zulip Server 1.5.2 released", "refsource": "MLIST", "url": "https://groups.google.com/forum/#!msg/zulip-announce/sUYeJv-fFmg/2TU2TLmNAwAJ"}, {"name": "https://hackerone.com/reports/224210", "refsource": "MISC", "url": "https://hackerone.com/reports/224210"}, {"name": "https://github.com/zulip/zulip/commit/1f48fa27672170bba3b9a97384905bb04c18761b", "refsource": "MISC", "url": "https://github.com/zulip/zulip/commit/1f48fa27672170bba3b9a97384905bb04c18761b"}]}}}}, "cveMetadata": {"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "assignerShortName": "hackerone", "cveId": "CVE-2017-0896", "datePublished": "2017-06-02T17:00:00", "dateReserved": "2016-11-30T00:00:00", "dateUpdated": "2017-06-02T16:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "03ECA4CD-B128-45EA-8A19-5F137BD08690", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "0609969D-7C68-4428-A2F3-EA532F6C4045", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "6141BC81-A452-44F0-9A61-B82772D406FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "F3662F33-CC19-46AE-902F-2A685030FDE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "7A20311C-FC51-4ED5-BCBC-955543FD1AF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "B4CC0654-4F8C-4D1B-B06F-035368E7B120", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "13048A35-82DA-45AF-BB3C-AEBD1A80734B", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "BE689D6F-F774-41AF-B97A-23973E22C9C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.9:*:*:*:*:*:*:*", "matchCriteriaId": "7C300421-CBDE-4DC2-A41E-38AFDD498725", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.10:*:*:*:*:*:*:*", "matchCriteriaId": "08DE09CC-3869-4686-A36D-F42788FC7118", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.11:*:*:*:*:*:*:*", "matchCriteriaId": "8A6AAE8C-F5E6-4A9C-9AF1-0D03EB9A7E97", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.12:*:*:*:*:*:*:*", "matchCriteriaId": "612DA887-F6BC-45F8-B187-AE23CF2F1027", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.3.13:*:*:*:*:*:*:*", "matchCriteriaId": "A21AE1B1-5A7E-447A-9301-1AD965F04833", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "034098C9-DCC3-46CC-9534-811F28F4493D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "EA56546E-7E0A-49EB-967A-7219C907BE50", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "2CF03C39-6873-4044-96B8-760156D7B1BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "A0167E36-42E4-4DA5-96FB-CFF0EC8FDA38", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "3914FE1E-E734-4B4A-8266-25FB5C32800D", "vulnerable": true}, {"criteria": "cpe:2.3:a:zulip:zulip_server:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "B25BEDD5-B562-4A2E-8284-07A47CB1F6D3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Zulip Server 1.5.1 and below suffer from an error in the implementation of the invite_by_admins_only setting in the Zulip group chat application server that allowed an authenticated user to invite other users to join a Zulip organization even if the organization was configured to prevent this."}, {"lang": "es", "value": "Zulip Server versi\u00f3n 1.5.1 y posteriores, sufre de un error en la implementaci\u00f3n de la configuraci\u00f3n de invite_by_admins_only en el servidor de aplicaciones de chat del grupo Zulip que permiti\u00f3 a un usuario autenticado invitar a otros usuarios a unirse a una organizaci\u00f3n Zulip, incluso si la organizaci\u00f3n fue configurada para evitar esto."}], "id": "CVE-2017-0896", "lastModified": "2023-11-07T02:37:47.850", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-06-02T17:29:00.167", "references": [{"source": "support@hackerone.com", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/zulip/zulip/commit/1f48fa27672170bba3b9a97384905bb04c18761b"}, {"source": "support@hackerone.com", "url": "https://groups.google.com/forum/#%21msg/zulip-announce/sUYeJv-fFmg/2TU2TLmNAwAJ"}, {"source": "support@hackerone.com", "tags": ["Permissions Required"], "url": "https://hackerone.com/reports/224210"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-285"}], "source": "support@hackerone.com", "type": "Secondary"}]}