CVE-2024-53995 — GHSL-2024-288: SickChill open redirect in login

描述

SickChill is an automatic video library manager for TV shows. A user-controlled `login` endpoint's `next_` parameter takes arbitrary content. Prior to commit c7128a8946c3701df95c285810eb75b2de18bf82, an authenticated attacker may use this to redirect the user to arbitrary destinations, leading to open redirect. Commit c7128a8946c3701df95c285810eb75b2de18bf82 changes the login page to redirect to `settings.DEFAULT_PAGE` instead of to the `next` parameter.

如何修補 CVE-2024-53995

目前尚未發布修補版本。可考慮移除受影響套件,或參考下方連結中的上游建議。

PyPI/sickchill—未列出修補版本

CVE-2024-53995 正在被利用嗎?

低 — EPSS 為 1.0%,目前沒有觀察到大規模利用活動。

受影響套件(1)

from 0, <= 2024.3.1

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:P

參考連結(6)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-53995
ADVISORYsecuritylab.github.com/advisories/GHSL-2024-283_GHSL-2024-291_sickchill_sickchill
PATCHgithub.com/SickChill/sickchill
WEBgithub.com/SickChill/sickchill/blob/846adafdfab579281353ea08a27bbb813f9a9872/sickchill/views/authentication.py#L33