Vulnerability-Lookup

CNVD-2025-09225

Vulnerability from cnvd - Published: 2025-05-08

Title

Docassemble信息泄露漏洞

Description

Docassemble是一个免费的开源专家系统，用于指导访谈和文档组装。 Docassemble 1.4.53至1.4.96版本存在信息泄露漏洞，攻击者可利用该漏洞通过操作URL获得对系统信息的未授权的访问。

Severity

低

Patch Name

Docassemble信息泄露漏洞的补丁

Patch Description

Docassemble是一个免费的开源专家系统，用于指导访谈和文档组装。 Docassemble 1.4.53至1.4.96版本存在信息泄露漏洞，攻击者可利用该漏洞通过操作URL获得对系统信息的未授权的访问。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9

Reference

https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv

Impacted products

Name
Jonathan Pyle Docassemble >=1.4.53，<=1.4.96

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-27292",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-27292"
    }
  },
  "description": "Docassemble\u662f\u4e00\u4e2a\u514d\u8d39\u7684\u5f00\u6e90\u4e13\u5bb6\u7cfb\u7edf\uff0c\u7528\u4e8e\u6307\u5bfc\u8bbf\u8c08\u548c\u6587\u6863\u7ec4\u88c5\u3002\n\nDocassemble 1.4.53\u81f31.4.96\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u64cd\u4f5cURL\u83b7\u5f97\u5bf9\u7cfb\u7edf\u4fe1\u606f\u7684\u672a\u6388\u6743\u7684\u8bbf\u95ee\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-09225",
  "openTime": "2025-05-08",
  "patchDescription": "Docassemble\u662f\u4e00\u4e2a\u514d\u8d39\u7684\u5f00\u6e90\u4e13\u5bb6\u7cfb\u7edf\uff0c\u7528\u4e8e\u6307\u5bfc\u8bbf\u8c08\u548c\u6587\u6863\u7ec4\u88c5\u3002\r\n\r\nDocassemble 1.4.53\u81f31.4.96\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u64cd\u4f5cURL\u83b7\u5f97\u5bf9\u7cfb\u7edf\u4fe1\u606f\u7684\u672a\u6388\u6743\u7684\u8bbf\u95ee\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Docassemble\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Jonathan Pyle Docassemble \u003e=1.4.53\uff0c\u003c=1.4.96"
  },
  "referenceLink": "https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv",
  "serverity": "\u4f4e",
  "submitTime": "2024-03-26",
  "title": "Docassemble\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2024-27292 (GCVE-0-2024-27292)

Vulnerability from cvelistv5 – Published: 2024-02-29 21:56 – Updated: 2024-08-02 19:27

Title

Docassemble unauthorized access through URL manipulation

Summary

Docassemble is an expert system for guided interviews and document assembly. The vulnerability allows attackers to gain unauthorized access to information on the system through URL manipulation. It affects versions 1.4.53 to 1.4.96. The vulnerability has been patched in version 1.4.97 of the master branch.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-706 - Use of Incorrectly-Resolved Name or Reference

Assigner

GitHub_M

References

URL

Tags

	https://github.com/jhpyle/docassemble/security/ad…	x_refsource_CONFIRM
	https://github.com/jhpyle/docassemble/commit/97f7…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	jhpyle	docassemble	Affected: >= 1.4.53, < 1.4.97

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:27:59.932Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv"
          },
          {
            "name": "https://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:jhpyle:docassemble:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "docassemble",
            "vendor": "jhpyle",
            "versions": [
              {
                "lessThan": "1.4.97",
                "status": "affected",
                "version": "1.4.53",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27292",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-02T19:26:12.962251Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-02T19:27:42.423Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "docassemble",
          "vendor": "jhpyle",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 1.4.53, \u003c 1.4.97"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Docassemble is an expert system for guided interviews and document assembly. The vulnerability allows attackers to gain unauthorized access to information on the system through URL manipulation. It affects versions 1.4.53 to 1.4.96. The vulnerability has been patched in version 1.4.97 of the master branch."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-706",
              "description": "CWE-706: Use of Incorrectly-Resolved Name or Reference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-02-29T21:56:39.897Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv"
        },
        {
          "name": "https://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9"
        }
      ],
      "source": {
        "advisory": "GHSA-jq57-3w7p-vwvv",
        "discovery": "UNKNOWN"
      },
      "title": "Docassemble unauthorized access through URL manipulation"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-27292",
    "datePublished": "2024-02-29T21:56:39.897Z",
    "dateReserved": "2024-02-22T18:08:38.874Z",
    "dateUpdated": "2024-08-02T19:27:42.423Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2025-09225

CVE-2024-27292 (GCVE-0-2024-27292)

Tags

Sightings

Nomenclature